Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revisionLast revisionBoth sides next revision | ||
public:strong_passwords [2011-06-01 12:01] – Arno Schoenmakers | public:strong_passwords [2017-04-20 07:12] – [Diceware] grit | ||
---|---|---|---|
Line 31: | Line 31: | ||
The safest solution for choosing good passwords is to use a randomly generated or seemingly random password that: | The safest solution for choosing good passwords is to use a randomly generated or seemingly random password that: | ||
+ | * Use a minimum password length of 12 to 14 characters if permitted. | ||
+ | * Include lowercase and uppercase alphabetic characters, numbers and symbols if permitted. | ||
+ | * Generate passwords randomly where feasible. | ||
+ | * Avoid using the same password twice (e.g., across multiple user accounts and/or software systems). | ||
+ | * Avoid character repetition, keyboard patterns, dictionary words, letter or number sequences, usernames, relative or pet names, romantic links (current or past) and biographical information (e.g., ID numbers, ancestors' | ||
+ | * Avoid using information that is or might become publicly associated with the user or the account. | ||
+ | * Avoid using information that the user's colleagues and/or acquaintances might know to be associated with the user. | ||
+ | * Do not use passwords which consist wholly of any simple combination of the aforementioned weak components. | ||
- | * Is at least 7 characters long, and longer if possible. | + | ==== Diceware ==== |
- | * Contains a mix of upper and lower case letters. | + | |
- | * Includes numerals, special characters, and punctuation. | + | |
- | * Is not based on any personal information. | + | |
- | * Is not based on any dictionary word. | + | |
- | Examples of strong passwords | + | We also recommend Diceware for generating |
- | + | ||
- | + | ||
- | De2#vu | + | |
- | 5sd$oiP | + | |
- | er89TI | + | |
==== Writing Down Passwords ==== | ==== Writing Down Passwords ==== |