Password Security and Safety

There is nothing more important that password security in world of technology. It is the first step to creating a safe and secure environment. If your password becomes compromised, there are limitless consequences to what could happen. There are a few very important factors in keeping your passwords safe and secure that everyone should adhere to.

Do not tell anyone your password
No one should every know your password, your bosses, your friends, or your bank. None of them should ever know your personal passwords. Any help desk, company, or organization will have administrators or technicians that can reset your password if they need to do something with your account. Organizations will never ask for your password over the telephone or e-mail!

Do not write your passwords down
The key to a good password is one that you can remember easily, but is hard to guess. It's very important not to write your password down. Hiding it inside your desk, a book, in a picture is just waiting for someone snoopy to find it. Some organizations will require the writing down of passwords, but generally these are Administrator positions and the password books are locked up in a controlled safe or secure location. Your boss shouldn't have all your personal passwords in his desk!

Be aware all the time
When you are entering your password at the computer, or at a bank machine, be aware of who is around you. If you think someone is trying to look at what you are typing, ask them to step back, turn their head, or cover up the keyboard or keypad with your other hand. If you think that anyone may have your password or has seen you enter it, change your password immediately.

Do not use the same password
Far too many people only use one password for everything they do, it makes it easier to remember, but compromises their security. If you use the same password for chatting on a web forum and your online banking password, you are just asking for trouble. Use unique passwords for different projects, websites, and logins.

Password complexity
Password complexity is a very important issue with most users. Often users will have small passwords that are very simple because they worry about trying to remember them. It's very important to have a password that is complex enough to stop people from guessing it, or using automated programs to randomly break it. I will outline good and bad characteristics of passwords below, along with some tips for creating passwords.

Avoid bad passwords, or easily guessable passwords
There are many characteristics that are considered bad when it comes to choosing a password. These characteristics should be avoided at all costs to help keep your password as secure as possible.

Don't use personal information in your passwords. Passwords that contain your date of birth, pets, drivers license number, social insurance number and similar information should be avoided. This also means person numbers of your children, friends, and family also!

Make sure your password is adequately complex, don't use passwords like: kenken, dog, sex.

Stay away from incremental passwords! If you use a password like HiThere1, don't change your password every few months with HiThere2, HiThere3. Create unique passwords each time.

Don't reuse your old passwords even if you haven't used that password in 3 password changes, keep away from reverting to your old passwords.

Don't use words from the dictionary. Passwords should be original conceptions, with no words that could be guess be an automated program.

Notes on character substitution I mentioned in the last point that dictionary words should be avoided. This is very true, but in addition to that, there are now dictionary attacks that integrate common slang spellings and special characters. For those of you who were on the internet and BBS world, the old KRAD, elite speak, can be just as easily guess as a properly spelled word from the dictionary. A couple of examples of what I'm talking about are, "elite speak" could just as easily be "l33t sp34k", "project" and "pr0j3ct". Don't rely on character substitution as a means of securing a simple password.

Creating a good password
Creating a good password is the key to your personal security. Keep these rules in mind when choosing your passwords:

A password should be over eight (8) characters in length.
Do not use dictionary words.
Do not use character substitution such as "l33t sp34k"
Do not user personal information
Do not use variations on your userid or login name
Use both upper and lower case letters (a-z and A-Z)
Use numbers in your password
Use special characters (% # @ *)

Remembering passwords
Everyone knows how frustrating it is to remember passwords, but there is one way that seems to help many people. Trying creating your password using a Mnemonic Device.

"I like money, give me your money!" could translate to: Il$,gmyM! "Oh, I wish I was an Oscar Myer Weiner!" could be: OH,iwIwaOMW

Simple phrases that are easy to remember for you seem to work the best.

"I live in Toronto, Ontario, Canada EH?" - iLiTOCeh?

Ken Dennis
http://KenDennis-RSS.homeip.net/

In The News:

US Security Agency operators eavesdrop on Americans abroad
Press Trust of India, India - Oct 9, 2008
New York, Oct 10 (PTI) The US' National Security Agency's (NSA) intercept operators spent their time eavesdropping on saucy conversations between Americans ...
Inside Operation Highlander: the NSA's Wiretapping of Americans ... Wired News
Will Senate actually investigate NSA spying on Americans? CNET News
US Spies on Americans Intimate Calls Islam Online
New York Times - The Miami Heraldall 147 news articles

Trend Micro Presents 'The Marriage of Security and Cloud Computing ...
MarketWatch - 15 hours ago
Security experts predict over 25000 new threats per hour by 2015, lengthening a security provider's "time to protect" -- the overall time it takes for ...

Review: Tiny flash drives improve their security
San Jose Mercury News,  USA - 5 hours ago
Beyond these three storage techniques, I also tried something else for people who want plug-in computer security: the $149 Yoggie Gatekeeper Pico. ...

Bush ex-aide says economic woes a security risk
Reuters - 12 hours ago
Frances Townsend, who chaired the Homeland Security Council from 2004 until January this year, said it was vital that the campaigns of presidential ...

Boston Globe
Elections officials deny illegally purging voters
The Associated Press - Oct 9, 2008
The New York Times based its findings on reviews of state records and Social Security data, and said it had identified apparent problems in Colorado, ...
Colorado to Review How It Purges Voters’ Names New York Times
Battle For The West: Voter Roll Purges in CO and NV, State ... Huffington Post
Some Indiana, Michigan voters may have trouble after voter purge WSBT-TV
News & Observer - New York Timesall 670 news articles

Security Bank of California Completes Formation of Bank Holding ...
MarketWatch - Oct 9, 2008
reported today that it has established Security California Bancorp, a California corporation and bank holding company. As a result of this transaction, ...

BBC News
Hamas agrees to form national gov't, reform security services
Xinhua, China - 2 hours ago
According to Zahar, the agreement was aimed at "forming a government of national understating and reform the security services in Gaza Strip and in West ...
Preparing to fail Al-Ahram Weekly
Hamas bomb factory found in West Bank: Fatah AFP
Israel shuts all West Bank crossings Garowe Online
International Middle East Media Center - Ynetnewsall 842 news articles

CEP News
Ford shares post 8th-straight day of declines
Forbes, NY - 11 hours ago
The low marked Ford's lowest share price since May 31, 1983, according to the Center for Research in Security Prices at the University of Chicago. ...
GM shares fall 30 percent after S&P statement The Associated Press
GM shares tumble to 58-year low International Herald Tribune
GM, Ford stocks screech to record lows Detroit Free Press
DetNews.com - USA Todayall 127 news articles

Security Bank of California Relocates its San Bernardino Branch
MarketWatch - 13 hours ago
Security Bank of California Forward Looking Statement Disclaimer - General Form This release may contain forward-looking statements that are subject to ...

Devcon International agrees with its Preferred Investors on ...
RTT News, NY - 10 hours ago
OB: News ) said Friday it reached an agreement with its preferred investors on a restructuring of their security. The restructuring follows the recently ...
Devcon International Corp. Announces Signing of Restructuring ... MarketWatch
all 30 news articles
security - Google News

Wells Fargo Report Phishing Scam

First off I should explain what phishing is. Phishing is basically the act of tricking... Read More

What to Look for before You Purchase Spyware Software

Huge number of spyware software applications are available in the market, some being offered as... Read More

Wireless Network Security

Working from home has its advantages, including no commute, a more flexible work schedule and... Read More

The Move to a New Anti-Virus Model

This is the second in a series of articles highlighting reasons why we need a... Read More

Is Shopping Online For Your Horse Gifts Safe?

Shopping for horse gifts or other gift items on the internet is quick, convenient and... Read More

A New Era of Computer Security

Computer security for most can be described in 2 words, firewall and antivirus.Until recently could... Read More

Phishing, Fraudulent, and Malicious Websites

Whether we like it or not, we are all living in the Information Age. We... Read More

Spyware Symptoms

Spyware symptoms happen when your computer gets bogged down with spyware programs running in the... Read More

The Attack of the Advertiser - Spy Mother Spy

The menacing campaigns that drive the corporate spyware and adware market is developing way out... Read More

How to Manage Your Username and Password The Easy and Secure Way

Have been an Internet user for more than 9 years, I have 100's of logins... Read More