Cybersecurity for your personal computer: Difference between revisions

no edit summary
No edit summary
No edit summary
Line 46: Line 46:


<!--T:18-->
<!--T:18-->
What do you think is the best way to keep your passwords secure?
What do you think is the best way to keep your passwords secure?<br>
A. Change them frequently
A. Change them frequently<br>
B. Use special characters and a mix of lowercase and uppercase letters
B. Use special characters and a mix of lowercase and uppercase letters<br>
C. Create each password long and unique
C. Create each password long and unique<br>
   
   
<!--T:19-->
Changing passwords frequently without cause can actually degrade security. When forced to change their password frequently, many people choose an easy one to remember based on predictable patterns.  
Changing passwords frequently without cause can actually degrade security. When forced to change their password frequently, many people choose an easy one to remember based on predictable patterns.  
Long passwords can be quite secure, especially when they are unique. Adding complexity to a password can help, but length proves to be more important than the actual characters used. The best answer to this question is to create long passwords AND use a different one for each service. Why? Because breaches do happen and some service will eventually mishandle your credentials, which will then get exposed. Just have a look at https://haveibeenpwned.com/ to see that this has already happened to many. If your password isn't unique and is exposed, it can be used to access any system where your credentials are valid. This process called password stuffing is usually automated and can happen as quickly as 12 hours after the initial exposure.
Long passwords can be quite secure, especially when they are unique. Adding complexity to a password can help, but length proves to be more important than the actual characters used. The best answer to this question is to create long passwords AND use a different one for each service. Why? Because breaches do happen and some service will eventually mishandle your credentials, which will then get exposed. Just have a look at https://haveibeenpwned.com/ to see that this has already happened to many. If your password isn't unique and is exposed, it can be used to access any system where your credentials are valid. This process called ''password stuffing'' is usually automated and can happen as quickly as 12 hours after the initial exposure.
   
   


rsnt_translations
56,430

edits