How Safe is Your Password?

July 13, 2010

I just finished generating yet another password. Every time I do this it reminds me of the growing need to remember all of the different passwords and user names that we create. It is a temptation to reuse the same password or keep a cheat sheet in your wallet, but this is not a good idea for security reasons. If you find that you have too many passwords and usernames to remember, you could look into free password managers such as KeePass, LastPass or RoboForm. Mac users can purchase 1Password, which also has an iPhone app.

A solid password provides about 95% of online security. Using an average computer and a good internet hookup, it would take a hacker about 5 minutes to crack a 6 character password if it was all in lowercase letters. According to John Pozadzides at Lifehacker.com, it would take 8 ½ days if a mix of upper case, lower case, numeric and other characters were used. A password of seven mixed characters would take just over two years to compromise.

A password should have a minimum of 8 characters, contain upper and lower case letters, and at least one number and one symbol. You can change a letter into a character (Manhattan becomes M@n4@tt@n) or use a phrase (Four score and seven years ago becomes 4s&7ye@rsa). Do not use a loved one’s name or birthday, "password", "letmein", 1234, your social security number, or any other meaningful personal information.

The more complex your passwords are, the safer your sensitive information will be. Don’t use the same password for everything. If a hacker has decoded the password to your Snapfish account, they may also have the password to your bank account.

One of the things we do at the library is to help customers set up web based email accounts. If someone has helped you create an email account, even someone you trust, it’s a good idea to change your password to something only you know. Be safe!