NerdWallet: How to make secure passwords you can actually remember

Passwords are the house keys to your online accounts, and when they’re hacked, intruders can break in and wreak havoc.

To create strong passwords, you have to strike a balance between making them difficult for others to guess and making them easy enough for you to remember. Many people favor simple ones at their own risk: “123456” and “password” have remained the two most common passwords for six years, according to password security company SplashData.

Unlike many other security measures on websites, a password is one you have full control over. And given that over 1,000 data breaches happened in 2017 alone, according to the Identity Theft Resource Center, it might be time to strengthen your passwords. Here’s how.

How to make a foolproof password

1. Start with a sentence

Despite the “word” in “password,” it’s better to think of starting with multiple words. Some websites require only six or eight characters for passwords, but that doesn’t mean it’s a recommended length.

When it comes to passwords, “longer is better,” says Richard Crone, a payments expert and CEO of Crone Consulting LLC. “And the way to do that is to use a sentence structure.”

Pick a sentence that’s memorable but doesn’t have details that relate too closely to you. Avoid using birthdays or the names of pets or family members, and feel free to be creative. Here’s an example: “cats do not like cucumbers.” Then, take out the spaces, “catsdonotlikecucumbers.”

“It’s really the length and the unrelatedness that gives you the best protection,” Crone says.

2. Avoid using real words

Change how your sentence looks by removing all the vowels, or only use the first one or two letters of each word. Don’t use dictionary words, which makes your password easier to guess.

The previous example becomes “cadonolicu” if you’re using the first two letters of every word in that sentence.

3. Mix in numbers, symbols and uppercase letters

Bring in a variety of characters to your password. Some websites have minimum requirements so you need to use at least one capital letter, one lowercase letter and a number. You might have to add a symbol like a period or exclamation point, too. As you mix it up, don’t repeat letters, numbers or symbols right next to each other.

By capitalizing some letters, replacing the “l” with an exclamation point and turning an “o” into a zero, the sample password becomes “CaD0No!icU.”

Use a password manager

The steps above help when you’re creating one really strong password, but remembering a dozen or more such passwords might make your head spin. That’s why you might want to consider using a password manager such as LastPass or Dashlane. There are free options, but some features are available only for purchase.

Think of a password manager as a bank vault that creates and stores long and complex passwords so you don’t have to. The only password to know is the one that unlocks the vault. Once you type that one, you can log into whatever online accounts you decide to keep on the password manager.

If you don’t use an online password manager, consider writing down complex passwords and storing them in a safe place such as a locked cabinet at home or in an encrypted file on your computer. These passwords should be difficult to access as well as to guess.

A password is “like scrambled eggs,” Crone says. “The more you fluff it up and spice it up, the better.”

More from NerdWallet:
Filed in: Top News Tags: 

You might like:

Encore: Yellen says inflation below 2% goal poses one of Fed’s ‘biggest challenges’ Encore: Yellen says inflation below 2% goal poses one of Fed’s ‘biggest challenges’
NewsWatch: If you like the FAANGs, you’ll love these three year-end melt-up candidates NewsWatch: If you like the FAANGs, you’ll love these three year-end melt-up candidates
Why nearly half of office Christmas parties won’t have booze this year Why nearly half of office Christmas parties won’t have booze this year
Personal Finance Daily: What’s at stake in ‘net neutrality’ debate and why nearly half of office Christmas parties won’t have booze this year Personal Finance Daily: What’s at stake in ‘net neutrality’ debate and why nearly half of office Christmas parties won’t have booze this year
The Wall Street Journal: 6 Citgo execs arrested in Venezuela, accused of corruption The Wall Street Journal: 6 Citgo execs arrested in Venezuela, accused of corruption
The New York Post: Uber paid ransom to keep data breach affecting 57 million users and drivers quiet The New York Post: Uber paid ransom to keep data breach affecting 57 million users and drivers quiet
Earnings Results: Salesforce earnings top Street estimates but shares back off record after hours Earnings Results: Salesforce earnings top Street estimates but shares back off record after hours
Market Extra: Goldman: ‘Rational exuberance’ to drive stock market in 2018 Market Extra: Goldman: ‘Rational exuberance’ to drive stock market in 2018

Leave a Reply

Submit Comment
© 2017 Stock Investors News. All rights reserved. XHTML / CSS Valid.