Multiple studies show that an average internet user has 20 to 100 online accounts. These accounts could be for work and personal emails, social media profiles, online banking, entertainment, insurance, online shopping, and more.
With so many accounts, clearly most of us are guilty of using the same passwords or similar ones. We ought to know that doing so goes against the best practices of protecting personal information online. All online accounts should have strong and unique passwords to protect your personal information.
What is a strong password?
Let’s first rule out the common belief that switching a couple of letters of a weak password with symbols or adding a `1`or `!` to its end would make it stronger. The picture below shows some of the weakest and most common passwords worldwide.
For a long time, the idea was that the strength of a password is only measured by how complicated it is. Following this approach, we all know there is a fine line between a strong password and a user-friendly one.
After extensive research on password security, experts found that the length of a password is a better indicator of its strength. Moreover, using passphrases can solve the dilemma of having a secure and user-friendly password. Passphrases are similar to passwords but longer to add security.
Tips for creating a secure passphrase:
- Use or make up a sentence or phrase that is easy for you to remember but hard for hackers to crack
- Add your own encoding: include a combination of upper- and lower-case letters, special characters, and punctuation.
Following the above tips, let’s create a secure passphrase:
- The chosen sentence is “Let’s age with attitude!”
- My own encoding: Let’s capitalized the first letter of each word and use the symbol `@` in place of the letter `a` and the number `1` in place of the letter `i`.
- Our strong passphrase becomes:“Let’s @ge W1th @tt1tude!” (Note: do NOT use this as your password!)
Here are more examples: (Please remember to NOT use them as any of your passwords!)
No matter how user-friendly a strong password can be, remembering twenty to a hundred of them is still very challenging. The obvious course of action to remedy this problem is to save a list of all passwords somewhere.
Where to save passwords?
While using the internet, have you come across a similar window like the one depicted in the picture below?
If yes, then you have already interacted with a password manager.
A password manager is a program that holds all your passwords with other associated information (usernames and platforms) in one place, with only one master password. Password managers can do the hard work of creating strong passwords and save them for you to access when needed.
These programs are heavily encrypted and often require two-factor authentication to access the content. That means each time you or anyone attempts to log in to any of the two accounts, a unique and one-time verification code is sent to your mobile phone. Therefore, they are more secure than saving your passwords in a document on your computer or writing them down on a piece of paper.
Examples of password managers
Here are three very common password managers that also let you know whenever any of your passwords is compromised:
- Google Password Manager: works automatically with your Gmail account. (Free)
- iCloud Keychain Access: works directly with all your Apple devices and products through your iCloud account. (Free)
- 1Password: standalone app available for Android, Apple, and Windows devices. (Paid option)
You can learn more about password managers from the WIRED article at this link.
3 best practices to keep in mind
- Always use unique passwords. Using the same password will link the security of multiple online accounts to only one password.
- Avoid using your password manager account on a device that is not yours. If you do, make sure to sign out of it once done. Furthermore, never agree to save your password on a device that is not yours.
- Most likely, your two most important passwords are the ones for your primary email address and your password manager account. Anyone with access to your primary email account can change the password of any other online account created with that email. Plus, in cases like Gmail, your email account is directly linked to one of your password managers. Consequently, these passwords should always be memorized and never be shared. They should also use two-factor authentication for extra security.
Feel free to comment below with any question about passwords. How many online accounts and passwords do you have? How do you handle them?
Techspert Jonathan is Senior Planet’s Digital Community Specialist and a former Senior Planet San Antonio technology trainer. He is also an iOS developer with a background in Information Systems and Cyber Security.
Have a tech question that’s got you stumped? Send your tech questions to Techspert Jonathan using THIS FORM. He’ll be tackling one question a month from readers.
Jonathan, Senior Planet’s Techspert columnist, answers one of your questions every month… but for exclusive tech reports, talks, webinars and more, become a Senior Planet official Supporter. Learn more about becoming a Supporter and access to exclusive events and offerings here.