We use passwords for everything from opening our phones to opening our homes. Every log-in, registration, application and subscription needs a password. In 2014 each person needed an average of 19 passwords. The average number of passwords each person uses in 2021 is 100! Nothing is more indicative of the rapid leap in cyber security awareness and technology development than our reliance on passwords for everything in our daily lives. World Password Day (#layerup) is celebrated yearly on the first Thursday of May, to “to address the critical need for solid passwords.”
World Password Day day was created by Intel, and this year, on May 6th, 2021 we will celebrate the 8th anniversary of World Password Day. Creating strong passwords is critical to protection and security of all our digital devices, especially with the rapidly changing threat landscape during 2021. Weak or stolen passwords account for a large percentage of data breaches within enterprises, making password security awareness a pervasive issue. Passwords with 5 characters (3 lowercase letters and 2 numbers) can, on average, be cracked in 0.03 seconds, while a more complex password with 12 characters (3 uppercase letters, 4 lowercase letters, 3 special characters, 2 numbers) takes 7.5 million years to crack using a brute force attack. Everyone is becoming more cyber security conscious, and World Password Day serves to remind us that a good password is more important than ever. Let’s discuss a few best practices to use when creating or changing passwords, to make them strong, long, and secure.
8 Simple Tips for Secure Password Practices
- Create a long and complex password or a passphrase. Passphrases can be an easy to remember phrase like a song or move title or quote.
- Use a combination of uppercase and lowercase letters, numbers, and special symbols to make the password or passphrase stronger. Substitute letters with numbers or characters like using “3” or “#” instead of “E” or “e” and “@” instead of “a”.
- Avoid using your birthday, spouse’s name, spouse’s birthday, child’s birthday, dog’s name, dog’s birthday or any PII obviously associated with you.
- The ideal minimum length of password should be 9 character.
- Test your password using an online testing tool.
- Use a different password for every account.
- Avoid storing passwords in any of your devices or having them written down.
- Use a reputable password manager to keep your passwords organized, available and secure
Brute-Force Attacks on Passwords
An attacker can use the brute-force attack method to crack weak passwords, by submitting millions of combinations of passwords or passphrases in hopes of guessing the correct one. Brute-force attacks are just one of millions of attack methods aimed at cracking your password.
Two-Factor Authentication Makes Passwords Stronger
Passwords have been in use since the very first computer systems were created – but times have changed. Most device users already use two-factor authentication, even if they don’t know it. Two-factor authentication is used everywhere from the zip code you enter at the gas pump to use your credit card, to the face scan on your phone. Two-factor authentication is an authentication method which requires not one, but two different and distinct forms of identification to access an online platform. Two factor authentication uses something you know (password or PIN number) with something you have like biometric security using fingerprints or face scans, a QR code, SMS message or any number of other methods. By deploying security solutions which require two-factor authentication, you are automatically creating an additional layer of security between your identity, password, and your data.
Sangfor Technologies Enterprise Cloud Computing and Network Security
Just as passwords are strengthened with two-factor authentication, network security is strengthened by Sangfor Technologies security solutions. Sangfor even has solutions that enforce password management and two-factor authentication for access control such as Sangfor Internet Access Gateway (IAG).
Sangfor also provides other cutting-edge, innovative cloud computing and network security solutions, delivering the network security most needed and wanted, including:
- NGAF Firewall Platform (NGAF)
- Cyber Command (XDDR)
- Endpoint Secure
- Security Services such as Incident Response
- Hyper-Converged Infrastructure (HCI)
Sangfor Technologies is an APAC-based, global leading vendor of IT infrastructure solutions specializing in Network Security and Cloud Computing. Call, email or visit our website to learn more about Sangfor’s Cloud, Security, or Infrastructure solutions, and let Sangfor make your IT simpler, more secure and valuable