How to Create (use use) Strong & Unique Passwords

Download How to Create (use use) Strong & Unique Passwords

Post on 08-May-2015

247.056 views

Category:

Technology

2 download

DESCRIPTION

A short (10 slides) presentation on how to create and use strong passwords

TRANSCRIPT

  • 1.How to Create (and use)Strong & UniquePasswordsLarry MagidCo-directorConnectSafely.org

2. Passwords should be: At least 8 characters long Contain at least one number Contain at least one capital letter Contain at least one symbol (like #, %, &) Not be a real word, name or anything that would be relatively easy toguessGo to next slide for suggestions 3. Think of a phrase you can rememberCome up with a phrase and use a character from each word. Usecapitals where appropriateExampleI met Susan Morris at Lincoln High School in 1991The password could be: ImSMaLHSi#91 4. An easy way to make each passwordunique Add a letter or two to the password based on the name of the siteyoure logging into. For example Amazon: aImSMaLHSi#91z (added an A to beginning and a z to end) Google: gImSMaLHSi#91 Twitter: tImSMaLHSi#91r 5. Change your passwords if & when: There has been any type of security breach on the site or your system You have lost a device that has the password stored Someone else gets hold of your password And even if none of this happens, change them every few months 6. Consider 2-Factor Authentication A growing number of sites allow you to use two-factorauthentication: Something you know & something youhave. Typically, the site will send a code to your phone that youtype in along with your username and password. Anyonetrying to access your site without your phone is out-of-luck. Some sites (like Google) only require it if youre on a newdevice. Others require it each time. Downsides are its a little inconvenient and a hassle if youdont have your phone Upside: Its a lot more secure (but not 100% secure) 7. Be wary of tricks to get your passwordAvoid phishing: Never enter a password based on a link in an emailunless youre absolutely sure its legitimate. Its safer to type in the webaddress of your bank or other company rather than clicking on a link.Dont give our password over phone: Be skeptical If you get a callfrom a service you use or your companys network support departmentasking for a password. Tell them youll call them back and find out if itslegitimate. 8. Consider using a password manager Password managers store and enter passwords for you. You cancreate really strong passwords (or let them generate random ones)and all you need to remember is the password managers password Examples:LastpassRoboformKaspersky Password ManagerDataVault Password Manager (iPhone)mSecure Password Manger (Android) 9. Use a very strong passwords for: Email: Many sites will send your password to your email address so its importantthat it be very secure Social network sites Your reputation can be affected if someone posts negative and abuse materialin your name Banking Pretty much goes without saying that you want a strong lock on your bankaccount E-commerce sites Dont let anyone go on a shopping free with your money 10. Never share your passwordsSharing a password is not a sign of being a good friend. Even if youreally trust that person: A friend can become an ex-friend Your friend might not be as careful as you are Your friend might use the password on a machine thats not all that secure Possible exceptions are kids sharing with parents or spouses sharing witheach other 11. For more on strong passwords:passwords.connectsafely.orgLarry MagidCo-directorConnectSafely.orglarry@ConnectSafely.org