Scribd
Upload
7 views

How to Create Secure Passwords

Uploaded by

dadrinker
Copyright
© © All Rights Reserved
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
7 views

How to Create Secure Passwords

Uploaded by

dadrinker
Copyright
© © All Rights Reserved
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
You are on page 1/ 16

Passwords

Marius Stremilowski
GIM 21.10.2021
Your password is a
first line of defence.
Top password used in 2020
123456 1q2w3e4r5t 123abc 555555 iloveyou1
123456789 qwertyuiop 1q2w3e4r 112233 aaaaaa
qwerty 123 qwe123 asdfghjkl 789456123
password monkey 7777777 1q2w3e welcome
111111 dragon qwerty123 123123123 159357
12345678 123456a target123 qazwsx 101010
abc123 654321 tinkle computer tigger
1234567 123321 987654321 princess 147258369
password1 666666 qwerty1 12345a babygirl
12345 1qaz2wsx 222222 ashley Jessica11020
1234567890 myspace1 zxcvbnm 159753 30
123123 121212 1g2w3e4r michael 0987654321
000000 homelesspa gwerty football loveme
iloveyou 123qwe zag12wsx sunshine
1234 a123456 gwerty123 1234qwer …
Password

It is a combination of upper and lower case letters, a digit, and aspecial


characters. You may also substitute characters to add complexity:

1/! = I/i, 2 = Z, e/E = 3, o = 0, s/S = $ etc.

qwertyui = Qw3rtyU!
Passphrases

It is a sentence or a phrase that includes a combination of upper and


lower case letters, numbers, special characters and punctuation. A
good passphrase should have at least 15, preferably 20 characters:

I hate passwords! – 1H@t3Pa$$w0rd$!


Passphrases

Another option is to create a short phrase out of several random words.


Using the entire word but still replacing a few letters with special
characters helps heighten security. Choose something silly or
memorable, like an inside joke or favorite food, animal and color:

Gr33n-3ggs&P!ggy$-f1y%
Base password/passphrase & salting
One trick is to use a base password that you tweak a bit according to
the service. You could add the first letter of the site to the beginning or
the end of your password, or even spell out the entire name, followed
by the “salt”.

If your base was for accounts is something like

Tw!tter or F@cebook

and make stronger it by adding a “salt value” to the beginning or the


end of your password. F.ex. 0r@ng3

Tw!tter+0r@ng3

0r@ng3+F@cebook
Base password & salting

“Salt” should as random as possible. Hence you can use “salt value”
generator:
5 f 2 j 5 9 y E u u 8 Z i r a y t 6 x y N V
4 o A 1 6 y A a y 6 2 9 A u O b 4 U x 2 k d
v m 3 u c o p a z u O n i l W o m 5 D y q i
a 9 P u g A 6 u a e a a 7 t 8 a f p 8 o e o
0 i e 8 C v 6 e d y s A m 1 7 x V I y e 8 I
1 2 v o H o d y l o 1 f i 5 5 1 a l 7 h 3 s
w 3 5 e Y s u f e U q 6 4 J t u 3 k y 7 e 5
4 a o z 5 d w a 2 e 8 t b u u c x o 7 d I w
f c 4 9 0 L 3 1 4 m t 8 e 4 y 5 d h 9 2 l q
0 4 o y l o e 6 n m 1 1 u 4 5 a e o R 4 A 4

Tw!tter+PugA6u Tw!tter+t8afp8

F@c#book+PugA6u
F@c#book+t8afp8

Gm@!L+PugA6u Salt value generator.xlms Gm@!L+t8afp8


Password Manager - KeePass
Although having all of your passwords in one place might not be the best
idea, there are a lot of options for password managers that allow users to
safely keep their passwords in a list. Some even allow you to change
passwords with a single click, all from the app.

How to use KeePass.docx


Browsers

Most Internet browsers nowadays, like Edge, Firefox, Chrome have a nice
feature that allows users to save usernames, emails, and passwords for
logins.

However, they are stored in plain text, hence easily readable.

NEVER use that browser function for passwords storage.


Password

• Password should be at least 14 characters long

• Password shall include a lowercase letter, a capital letter, a digit and a


special character.

• Password needs to be changed every 90/180 day


Password

It shall NOT include the following:

• your username, previous passwords


• dictionary words, any dictionary words
• your name, your date of birth, social security number
• any other personal information that is likely to guess – i.e. family members' names, pets’
names, your phone number etc.
• easily identifiable passwords such as sequences or repeated characters like 1234, 2222, abcd
or adjacent keyboard letters like qwerty.
Use base password & salting

“Salt” should as random as possible.

Twitter+PugA6u Twitter+t8afp8

Facebook+PugA6u Facebook+t8afp8

Gmail+PugA6u Gmail+t8afp8

Salt value generator.xlms


WORK PRIVATE UNIMPORTANT
ACCOUNTS ACCOUNTS ACCOUNTS

Activate two-factor authetication if possible


PASSWORD

You are strongly encouraged to NOT write down password or


document it in any way.

For secure storing of passwords, use KeePass from Energinet’s


repository (IT/Software Central).

Træk billede til pladsholder eller klik på symbol for at tilfø

Use of post-its is NOT allowed.

You might also like