OOPS: THOSE P@$SW0RD RULES WERE ALL WRONG

No Comments

password

If creating and remembering passwords has become increasingly annoying (and difficult), Bill Burr would like to apologize.

Burr was the person who proposed that passwords have at least eight capital and lower case letters, numbers and special characters back in 2003, when he was a manager at the National Institute of Standards and Technology. Websites fell in line, requiring you to dive into password hell coming up with impossible to recall character stews—which, by the way, you were supposed to change at least every 90 days and not keep on a Post It.

In the 15 years since, the need for passwords, each one different and all of them complex, has grown like kudzu across cyberspace. Almost anything you want to do online—get email, join a group, look for work, bank, shop—requires you to come up with some new combination of numbers, letters and symbols. And then remember them all.

Burr waited until he retired at age 72 to say “Whoops, My bad,” telling the Wall Street Journal last week that he regretted both the recommendation for passwords to use a combination of numbers, capital and small letters, and special characters, as well as the advice to change passwords frequently.

Those complex passwords, it turns out, are easier to crack than simpler ones.

As the popular comic below shows, hacking software can easily decode an eight-character-long combination of letters, numbers and symbols like “Tr0ub4dor&3” in about three days, but a long sequence of random words known only to you, such as “correct horse battery staple,” would take 550 years.

A longer string has more ‘bits of entropy,” meaning more possible combinations that take more time to crack.

And 8-character word isn’t just shorter; it’s also fairly predictable because most people, in an attempt to stay above water, will use the @ sign for “a,” a zero for “o”and an exclamation point for “i.”

“It just drives people bananas and they don’t pick good passwords no matter what you do,” Burr told the Wall Street Journal.

New National Institute of Standards and Technology were published in June. They recommend a random phrase of at least four words that make no sense together. Probably best not to use “correct horse battery staple”—or “password password password password.”

“Much of what I did I now regret,” Burr said.  The above very useful hint was brought to you from SeniorPlanet.com, which is not just for Seniors.

October 2018
S M T W T F S
« Sep    
 123456
78910111213
14151617181920
21222324252627
28293031  
 
 

More from our blog

See all posts

How to prevent phone and tablet theft

Minimize the chances of becoming the latest victim of personal-electronics thieves by…
Continue reading

Common-Sense security tips.

How do you stop Google from tracking you when you do a web…
Continue reading

How to Share a Google Calendar

Google Calendar is a great app that can be accessed from any…
Continue reading

A Few More New Tips

Some more tips to save us time and money. A.   Shop around…
Continue reading

Some Newer Tech Tips for the Frequent User

Here are a few newer tips, we haven't seen before, that are…
Continue reading

Store it in your Cyber Closet

Have you ever lost something you saved to a disk? Ever had…
Continue reading

Streaming Systems – Chromecast, Roku, Fire Stick or AppleTV

Mirror, Mirror on the TV. Since its introduction in July 2015, the…
Continue reading

How to Connect Your Laptop to Your TV

In their search for entertainment, many people have cut the cable (or…
Continue reading
No Comments

Recent Posts

 

Leave a Comment