A password is something you have no doubt created dozens and dozens of times. A password is a security mechanism to help secure access to a device or service allowing the correct individual to access the right device or service.
Something that is very worth mentioning is when correctly done passwords, as well as security in general, can feel a bit burdensome. If it’s super easy to get access to a device every time, then it’s likely not very secure.
The password is a cornerstone of what we call “authentication” which is a systemic way to verify the identify of someone or a process. Authentication works with “Authorization” which is granting the correct level of access to the correct entity to the correct resource. Imagine the example here: Jim signs into a web site at work, he must give a user ID and Password thus authenticating, then he is authorized, and he is only given access to the websites he should have and cannot see HR websites for example.
Some easy to remember DO and DON’T items regarding passwords:
The “Don’t” list
- Do not use the same password twice, but absolutely you must make each E-mail password unique as well as anything else sensitive such as Banking etc.
- Do not use a ‘familiar’ name, such as your spouse, child, pet etc. in your password.
- Do not write a password list and save it in a cloud service, because if that one password gets compromised then all your passwords are suddenly compromised
The “Do” list
- Do change your password regularly, at least every month or two—yes, every single one and yes, it is annoying to do so
- Use strong passwords—a strong password is long, has a mix of capitals and lower cases, numbers and special characters (for example “hello” is a bad password but “DK$^$)456f;aef” is a much better one—problem is the good ones are hard to remember
- Do write passwords down, yes in a notebook in a safe space. I have one “Secure” notebook I hand write passwords down. It is not online or on any device, and the notebook is hidden on a wall of bookshelves I have in my office. Yes, it’s not very portable as it never leaves the house, but it’s a good emergency back up if I can’t remember.
- Do use at least 8 characters but 10 or more are always better
What do I do? I have a base password which I modify for every website/service/app I use following a strict algorithm so I can figure out what my password is depending on what I am doing. I change the base password often.
Other authentication opportunities include biometric (a retina, fingerprint etc.) something that makes you uniquely you.
The ultimate rule: Use common sense with a dash of prudence
You may remember the wonderful Mel Brooks movie where the bad guy staters that “12345” is his password on his matched luggage after someone states that is the password an idiot would use. Well, it is one of the most used passwords and it is bad so do not use it, avoid the “obvious” passwords.
There are many lists of “worst” passwords but “12345” or similar list of sequential numbers is at the top of the list followed by “password”. With a bit of effort and careful tracking you can have a system to support your passwords.
We know that if it is a bit of a pain in the backside. Yes, it is frustrating to have to change a password, and it can be equally frustrating when you loose track of what password you use for what website or service, but that makes it far harder by the bad guys. Remember your password can be compromised by hackers attacking other websites, through no fault of your own your user ID and Password can be in the hands of these people. By enforcing password segregation and strong passwords you can keep exposure to a minimum therefore your accounts will remain much safer!
Eric C Richardson 
[…] Make sure you have an extraordinarily strong password on all your devices — See my post on Passwords here: https://ericcrichardson.com/2021/01/14/the-gist-of-passwords/amp/ […]
[…] https://ericcrichardson.com/2021/01/14/the-gist-of-passwords/amp/ The big takeaway here is to not assume too much, plan on everything that touches the internet being attacked and take precautions as you cannot be overly careful. […]
[…] Change all your passwords, make sure you have unique passwords for different services. Look at my piece on passwords here https://ericcrichardson.com/2021/01/14/the-gist-of-passwords/amp/ […]
[…] -What you know: The notion of security for software and devices is based things a User Knows, that is usually the userID/Password combination. But of course, they can be stolen potentially so of course taking precautions is smart. See my article on Passwords here: https://ericcrichardson.com/2021/01/14/the-gist-of-passwords/amp/ […]
[…] Use passwords for each device- Ensure you have unique passwords for each device, and service separately. Never ever use the default password on these devices, that’s the entry for so many bad guys. You can read about my article here on passwords: https://ericcrichardson.com/2021/01/14/the-gist-of-passwords/amp/ […]
[…] There are so many other devices such as smart ovens, smart refrigerators, smart locks, smart doorbells etc. so I recommend you look around for what is out there! To me I really saw the power of them when I started connecting them to my different smart speakers/apps. I personally actually have Cortana, Google Home, and Amazon echo set up so I can accomplish whatever I want in front of any device. But be smart about y our set up, for example take smart steps to protect yourself, use smart password discipline. You can read about how to manage passwords here https://ericcrichardson.com/2021/01/14/the-gist-of-passwords/amp/ […]