Tweak Your Biz » Technology » Password Protection Top Tips

Password Protection Top Tips

by Elaine Rogers on August 16th, 2012
35 Comments



A password is a common denominator in everything we do online, along with sign-ups and logins. We have become used to signing in or logging on to a site, forum, dashboard, blog, website or hosting control panel. Username, email and password protection is such a familiar space for us now, yet what are we doing with them? There is a lot we can do technically online, what I want to address in this post is simply what we can do for ourselves personally. Let us look at how we can increase our security and protect ourselves and our content online.

Security Breaches of Passwords

A recent Dropbox security breach for a limited number of account holders highlights the need to limit the number of email addresses and passwords we have “lying around” in a protected spreadsheet, handwritten, or sticky on the PC (do people still do that? Yes!)

I have come across people manually encoding their passwords and PINs either as phone numbers or within phone numbers in their address books. This is not technically safe!

No one will guess my madey uppey password!

Also what is unsafe is the assumption that just because you make up a seemingly “random” password in your head, then no one will guess it. Well that is simply not the case. What we may consider sacred may not be. We talk a lot, and tell people things we may forget later.

The biggest problem with passwords is that we tend to generate 4 or 5 and use them across all our sites, forums and social networks. Some people will do their best to use certain passwords for secure sites (like banking, site hosting, revenue, tendering etc) and then a different set of passwords for less secure sites like social networking, forums, free downloads etc.

Just a note on signing up for free downloads etc. I know most people just generate another Gmail account or similar, but there is a fantastic service, called 10 Minute Email that you can use for the purpose of free instant downloads etc. It really does only last 10 minutes (you can request further increments of 10 mins).

Related: The Consumer Privacy Bill Of Rights And Target Marketing

Good Password Protection

So what do we do? How can we protect ourselves better outside of technical means? Let’s look at a couple of options, finishing with my favourite.

Random

We can use different means to randomly create passwords on our behalf. Certain websites will do this at sign-up level, and you have to copy it in order to gain access. Invariably, we forget it or lose it. Certainly, any communication you receive from a successful sign up MUST be saved, including receipts etc.

Incremental

So we begin with something like our favourite place in the world (or outside) that we don’t talk about every day – say “foxglacier”. Using this as a start, we could begin with foxglacier1 or 1foxglacier1 or 1Foxglacier1 or 1Foxgl@cier1. As you add highercase, numbers and symbols, you are strengthening your password protection. So when it expires, you can move to 2Foxgl@cier2 and so on.

Acronyms

Using an acronym, in my view is probably the easiest to remember and most secure in terms of randomness. For this we need a system, beginning with a sentence or saying or question:

Sentence – “The quick brown fox jumps over the lazy dog.” We can convert that into “tqbfjotld.” (including the period for extra strength). We could then add a meaningful number, as certain sites require a numerical value to be included. So we could choose (NOT your age or date of birth) but perhaps the number of animals in our sentence – 2. Password becomes “tqbfjotld.2”

Using a question can add the question mark for added security. For example – “Where am I going today?” becomes “waigt?” – we could change a letter to a symbol for added strength, “w@igt?”

Acronyms and Relevance

Stay with me now…  it’s all very well having an acronym – but it’s only 1. I have just checked how many sites I have logins for, and it’s roughly 120, that’s between 1 and 120 passwords!! So if I want to use a different password for each site, I am in trouble already.

So let’s take the acronym theory a step further. So I have my basic password, let’s use “tqbfjotld.2”. I also know I use sites for both personal and business use (WordPress, Twitter etc) so I need to differentiate between them – perhaps P and B (or p and b). So for a personal twitter account, I could use “tqbfjotld.2p” and add T or t for twitter. It would then look like  “tqbfjotld.2pt” – keeping it all lowercase for now.

For my business twitter account, my password would be “tqbfjotld.2bt”. My Facebook (personal) password would be “tqbfjotld.2pf” or “tqbfjotld.2pfb”. Extra strength would be using a mix of uppercase and symbols, such as “Tqbfj0tld.2pFB”. How cool is that?

Best Fit

You need to decide on a “standard” for things like different accounts for same service (like p and b) and whether things like Facebook should be one letter or 2 (f or fb). Have a standard for numbers, capital letters and symbols. Great symbol replacements are @ for letter a, $ for letter s, < for letter c, 9 for letter p, and 0 for letter o.

Examples of passwords not to use

  • The word PASSWORD!
  • For your twitter login, don’t use “twitter”
  • Your name, nickname, dog’s name, spouse or child’s name
  • Your street address, web address, DOB, telephone number, ZIP code etc
  • Your car registration number, passport or drivers license number
  • Countries, business names, places you have visited and talked about

The more random the better!

What system do you use to generate and protect your passwords? We love learning about new systems, weird and wonderful!

Did you like this article? Sign up for our RSS, like us on Facebook or follow us on Twitter

Image: “Login Username and password“/Shutterstock



Category: cloud computing, Modern business, security

Tags: , , ,

The Author:

Elaine Rogers is a Business Training & Development Specialist. She provides training and coaching in the areas of IT Skills, Business Skills, and Soft Skills. Elaine has just launched a new online training store at http://www.thesmarttrain.com that provides videos and workshops in the areas of IT, Business and Soft Skills. http://www.thesmarttrain.com

Read more and connect »

Add Your Comment

  • http://www.tweakyourbiz.com Niall Devitt

    Hi Catherine, Great great post and thank you for raising this issue through Bloggertone. nnI’d like to add something equally sinister to the mix here and that’s online bullying, and I don’t mean between teenagers here. Unfortunately I’ve witnessed what I would call bullying on sites such as Twitter on more than one occasion, and coming from people who really should know really much better.nnI’ve also noticed that these Twitter bullies tend to come with a lot of hangers on, followers who continue to harass the person after the initial incident/s because they want to be noticed by the initial bully.nnI talked to people who were upset to the point of tears after these incidents and some have left Twitter because of the vile nature and behavior of some of the people on there. nnPerhaps some type of campaign is needed to stamp out online bullying between adults is needed?

  • Madeleine

    Hi Catherine,a thought provoking post,good to see the issue raised.nnnSadly it appears that bullying occurs in all walks of life, I have seen it happen in voluntary groups,where an individual who is working for the common good is targeted by another individual who has ulterior motives for being in that group.Sadly this can go unnoticed by the main body of the organisation for a long time,to the point where the person being bullied leaves the group,to avoid causing fuss and discord,where in actual fact it is the bully who should be removed.nnSome system of accountability in every group or organisation is needed,even something as simple as a comments box…n

  • http://www.de-stress4life.com/ Catherine Connors

    Hi Madeleine, nnThe subject of bullying is so vast that this post is not even the tip of the iceberg, it can and does happen in almost every setting that life can place us in, from school to home life, from sports teams to recreational groups, from school/university to work place environments and everything in between.nnI intend to write much more on this subject and am very thankful for your comment and for sharing.nnCatherine

  • http://www.de-stress4life.com/ Catherine Connors

    Hi Niall,nnI had intended to write about this very subect in the near future, like you I’ve witnessed this type of ‘mob’/'gang’ bullying on sites such as twitter over the last few years and have often found myself surprised at those who partake. nnI would just like to say -nn* Repect others – Behind the profiles (Twitter, Facebook etc) there is a live person with very real feelings, even though you can’t see someones face nor witness ‘face to face’ the consequences of online bullying does not mean that the shock, upset, tears, fright or stress the victim receives is not real either. Every person deserves respect and we all have the right to our own opinions based on our knowledge and experience, and yes, we can sometimes (respectfully) share a difference of opinion.nn* Remember who you are – The words you write are read by more than just the victim, once written they are hard to erase, even after you ‘delete’ your comment/tweet the words live on for a very long time in memories (a place where the delete button does not exist). nnMore and more research is now taking place around the subect of cyberbullying and cyberstalking, according to some of this early research approx 1 out of 10 adults have been the victims of online bullying, sadly the rate is higher for teenagers and children, with at least 4 examples in the United States where teenage suicide has been linked to online bullying.

  • http://www.encouragingexcellence.ie/ Mairu00e9ad Kelly

    Great post Catherine. As someone who was bullied in nearly all walks of life at some stage, I think one of the best ways of counter-acting it is to teach the bullied person the skills to be able to deflect it so that it doesn’t have the desired effect. It was only when I stood up to the bullies that they left me alone. An understanding of why they are bullying in the first place and correcting that would also nip it in the bud.nnnCan’t wait for the following posts :-) n

  • http://mindfulproductivity.net Beverley

    nice post Catherine. I shared it over on LinkedIn too as thought it a good place to have the issued raised too. n

  • http://www.seefincoaching.com/blog Elaine Rogers

    Hi Catherine,nnA well deserved post raising an important and increasing issue, especially as mentioned below with cyber bullying. I have also witnessed adult online bullying and harassment. It is unacceptable, yet like other forms of bullying, can go unnoticed.nnnUnfortunately victims are chosen for that very trait – ability to be victimised. A very simple thought can change how they see/view a bully.nnnIf someone is being bullied, they simply need to realise that the bully’s behaviour is more about them (the bully) than the person being bullied. Often, receivers of such behaviour think they have done something wrong, whereas the behaviour is so subjective, it is often relating to hurt experienced by the bully.nnnWithout offering sympathy for a bully, I empathise with their pain, it must be extreme for them to behave so badly towards another person. That lack of respect comes from within, not without.nnnI recently helped a client overcome such behaviour by a group of people in her workplace. Once she realised they were not strong, and in fact she had a stronger character, she was able to rise above it and dispel the negative behaviour towards her. It was such a release after 3 years of accepting that behaviour.nnnLooking forward to your next post already :) n

  • http://www.tweakyourbiz.com Niall Devitt

    Thanks you for such a wonderfully thought out response. I think the Bloggertone community should do something about this?

  • Anonymous

    Thanks for the thoughtful post Catherine. I’ve been lucky enough to avoid bullying of myself in the workplace, however there have been a few occasions where people have tried to drag me into a bullying mentality. Thankfully, probably because I was bullied at school i’ve been able to see what’s happening and have wanted no part of it. It’s behaviour I can’t bear and i’ll always go out of my way to make sure that a victim is not left alone.nnLoing forward to the rest of your posts in this series.

  • http://www.de-stress4life.com/ Catherine Connors

    Thank you very much Beverleyu00a0

  • http://www.de-stress4life.com/ Catherine Connors

    A very good point Mairead and one which I willu00a0address in future posts on the subject.

  • http://twitter.com/JBBC Marie Ennis-O’Connor

    A really important topic Catherine. I recently had a huge response to this on my own blog with many readers telling their own tale of workplace bullying. Reading through the comments, the same themes came up – a feeling of powerless, a concern that the person being bullied was somehow to blame, and a diminishing of self esteem. Other readers shared advice on how to cope and again the same theme reoccured – you must stand up to the bully and take back control.

  • http://www.hopetackaberry.com Hope Tackaberry

    Great article! I worked in an organization that had a terrible bully who messed with dozens of people in the organization. u00a0I eventually left and they have kept the bully. u00a0Why? u00a0Because she is a producer. u00a0The amount and quality of work she provides isu00a0unbelievable. So they put up with her. u00a0Interesting, isn’t it?

  • http://www.encouragingexcellence.ie/ Mairu00e9ad Kelly

    I will be out of communication from 1st June u0096 10th June 2011. I will replyrnto your email after my return.rn rnBest regards,rn rnMairu00e9ad KellyrnEncouraging ExcellencernRealising your Potential rn http://www.encouragingexcellence.iern(+353) 086 1702010rn rnLink to us on LinkedIn:rnrnhttp://ie.linkedin.com/in/encouragingexcellencencernJoin us on Facebook: rnhttp://www.facebook.com/encouragingexcellencernFollow us on Twitter: rnhttp://twitter.com/encouragxcellns

  • compliancesafety

    u00a0Our general safety training and Security awareness Training products deal nwith safety and health issues that are important to employees in ntheir day-to-day job functions. General Safety Videos , DVDs and Kits nare generally used when training is done. nIf you would like to get more details kindly visit us at:nhttp://complianceandsafety.com/nnregards:ncompliancesafety

  • Anonymous

    Hi,nu00a0 u00a0 u00a0 u00a0 u00a0 u00a0 Thanks for information about How to Identify a Bully…………Thanks,

  • Anonymous

    Hi,nu00a0 u00a0 u00a0 u00a0 u00a0 u00a0 Thanks for information about How to Identify a Bully…………nnThanks,u00a0 nBullying at school

  • Derbhile

    Good to widen the definition of bullying – shows people that they’re not just going mad.

  • Depressed Jane Doe

    Hello I just need to get this off my chest. This guy and his buddy at my work keeps bullying me just because I don’t want to date him. He and his buddy goes around saying I am gay just because I don’t want to date him. Even when I had a boyfriend he kept calling me gay. I thought telling him that I have a boyfriend would make them stop but apparently it makes it worse. His buddy has a history of bullying he has bullied two other women before me and my company doesn’t do anything about it.  I notice that everytime he selects a target all the other employees in the department also hates that target. I have tried everything to make it stop but unfortuantely it is making it worse. I also made the mistake of glaring at him at one of our work meetings which made one of my supervisor be on his side. This supervisor ( not my immediate supevisor) is now bullying me as well because of the glaring saying he is going to get me fired. Apparently I have to have sex with this guy in order to work there! Worse yet my co-workers seem to be on his side saying I should either date him (just because  we are both asian) or to lead him on which I have a hard time doing because I don’t like to pretend. Plus I am so mad that he keeps saying shit about me.  Also, he keeps saying he can control who I date and I can’t date any other guy but him or else. Or this other single girl  at my work has to steal my boyfriend away from me because I don’t deserve a boyfriend if I don’t date him. I have told my immediate supervisor I feel like she believes me but the other supervisors keep saying I am making it up for attention or because I am mentally insane  or I bring it on myself because of the way I dress so I dont want to pursue it further. I have talked to my family about it and they told me to ignore them because work and money is important so don’t quit. just learn to pretend everything is ok because you need money to pay the rent so to speak.

    Thanks for listening I needed this . I just spent all last night crying because of these two jerks. It isn’t even approriate to have sex with guys you work with. Thanks again I just need to get this off my chest.

  • http://www.wholesalepages.co.uk/ UK Wholesale

    Password is very important, but normally it is perceived very casual and unimportant. To secure the details of your account and data, step of choosing a password should take seriously and your tips are really interesting and great to make passwords protect by unauthorized users.

  • http://www.smartsolutions.ie/blog/ Elaine Rogers

    Thanks for the comment, and I truly believe the best defense of our own sanity, is to take control, make up a workable system and stick with it, and it becomes easier to manage, remember and protect. Relying on password generators is fine, some people mistrust them, so there needs to be proactive alternatives :)

  • http://www.cutehoney.ie/ Mairéad Kelly

    Brilliant post Elaine, as usual and a very, very important subject too. When teaching my clients I suggest that they use a password generator, I recommend http://www.lastpass.com and that they pick ONE obscure password to remember, the one to log into LastPass. You can still generate your own passwords or let it generate one for you for all your sites. The nice thing is when my laptop crashed and died, I simply logged in from a different computer and could still get access to the different sites I normally use.

  • http://twitter.com/neilsisson Neil Sisson

    Great post Elaine. I’m with Debbie: I would be completely lost without Lastpass. Premium account is about 5 quid a year and you don’t even need that. Highest level of security around so as long as you make sure your lastpass password is something memorable but strong then you’re all set.

    Also it has a pass generator tool that creates really strong passwords and the great thing is that because it works with all browsers and remembers all of your websites there is only one password in your life that needs to be something you can actually remember.

  • John Twohig

    Great post, Elaine. I am one of the lazy ones, I am going to review this on Monday and look at Last Pass as recommended by Neil. Thanks for the wake up call.

  • rakkas18

    Wow It was Great Information to us, Because password protection is very very important to all peoples.Keep on posting.Thanks for sharing this information.

  • http://www.smartsolutions.ie/blog/ Elaine Rogers

    Well Neil, I think anyone reading this post, you have them sold! As the world knows by now – there is an app for everything. And it’s amazing how there are still so many that simply do not trust generators, or don’t understand them.
    Thankfully, as we become more aware and savvy, that is changing :)

  • http://www.smartsolutions.ie/blog/ Elaine Rogers

    Thanks John,
    I recommend you view with diligence, as protection our credentials online is becoming ever more important, and ever more easy, although many people are not aware of the tools that are out there for our convenience (and our safety).

  • Sarah Ryan

    Great post Elaine. Thanks for sharing. Off to check out LastPast myself now!

  • http://twitter.com/ElishBulGodley Elish Bul-Godley

    Great post and so practical – should be in social media 101 lessons everywhere

  • http://www.smartsolutions.ie/blog/ Elaine Rogers

    thanks and glad you found it useful!

  • http://www.smartsolutions.ie/blog/ Elaine Rogers

    Hi Mairead,
    Thanks for sharing that resource, I have been using it the past week, and initially it was great at saving pages. It seems to have gone to sleep now, so I will need to look into that. Thanks for contributing to the conversation :)

  • http://www.smartsolutions.ie/blog/ Elaine Rogers

    Thanks Sarah, great that you found the post useful

  • http://www.smartsolutions.ie/blog/ Elaine Rogers

    Thanks Elish, It’s a topic that can bring hives out in many. Employees are the least likely to use outside resources, and still often rely on variations of “pasword”

  • http://twitter.com/simonshep Lord Haw Haw

    Due to not thinking about this properly, we humans now are forced to use passwords (e.g. must have a capital, must have a number) that are difficult for us to remember and actually relatively easy for a computer to crack. A proper password schema would be something that requires a much larger number of characters but allows us to write in natural English. ‘my first girlfriend’s name was Rebecca’ is much more secure than R3b3cca. And you only have to mix it up a tiny bit to make it all but uncrackable with current tech. And I, for one, can type the first in less time than the second.

  • http://www.smartsolutions.ie/blog/ Elaine Rogers

    That’s a great suggestion for a schema, considering the web is supposed to become more user friendly. We can get bogged down by being scared of the web, trolls, viruses, phishing, scams etc. and forget that the web is there for the people.
    Interesting point about ease of typing – especially touch typists – your suggestion makes sense – many many more characters, easier to type.
    Thanks for the contribution Lord Haw Haw

Related Posts


«
»