How many of your online passwords include uppercase and lowercase letters, numbers, 和特殊字符? It’s probably because of a document from 2003 that you’ve never heard of.
《美国经济学人》的作者.S. Department of Commerce National Institute of Standards and Technology’s NIST特别出版物800-63. Appendix A tells 《2021十大正规彩票app》 he made a mistake 14 years ago when he recommended a secure password include a complex formula and get updated often.
The 2017年版本的NIST出版物 explains that password complexity not only makes it harder for people to memorize their passwords but also wasn’t necessarily making them more secure. In addition, it says that passwords only need to be updated when there’s been a breach, like when you hear hackers hit your bank or favorite online shop.
是什么让密码更安全?
忘记大写、数字和字符. 使用一长串你能记住的随机单词. The updated NIST publication says password length is usually the main factor for password strength, because short passwords are more susceptible to being cracked. 所以,苹果诗歌比P@ssw0rd1更强大!而且出奇地容易记住.
Hurray!
Yeap – with a twist… have multiple passwords – never the same one every where. Figure out a way to use slight variations to make it easy on yourself. Someone I know has been using the same passwords since the 90’s.
Why doesn’t someone send this message to the Board of Realtors who seem to be so worried about MLS passwords…? ~I’d be willing to bet that changing my password every few months has never kept anyone from getting into the system if they wanted to. 这只是代理人的负担, the majority of whom are senior citizens and can’t remember what we had for dinner last night, 更不用说新密码了.
How I wish more IT professionals, and even formal security audits, realized this! PurpleMonkeyDishwasher (example only) is far more secure, 对我来说也更容易记住, 比密码, Qwerty1, Kid’s / Spouse’s / Pet’s name1 (all numerically incremented with each predictably timed and required Password change). These examples are from the standard list of overused passwords that is published every year, yet many people still use these due to business requirements and IT policies, 这应该不再适用于现代使用. 政策的变化往往比技术的变化慢. 我的希望是周围的IT人员更多… Read more »
不幸的是, 某些网站要求您使用小写字母, upper case, 数字和符号, 所以你必须用他们想要的, 而不是你能记住什么. I try to use one long nonsensical password for all my financial accounts and another for sites that are not financial in nature, 但这对不同的网站来说是不可接受的. As a result, I have to change passwords often as I cannot remember what that particular site requires. 有些网站甚至将密码限制在12个字符以内. I don’t like storing all my passwords either to a site or in a manual… Read more »
在很多网站上, 当你说你记不住密码的时候, they automatically force you to change it and create a new one. ~Now you have another password that you can’t remember! All I wanted to do was to retrieve the old password, and continue using it. Obviously, 我是唯一一个“忘记”它的人, so I should be allowed to continue using it if I choose to. But this blog will have no effect on what other web sites do with their passwords. The message needs to go to the Boards of Realtors in the state, and tell… Read more »
Per my Tech Coach: “this is a relevant topic, but needs to be considered in context. 密码不能太长. A lot of websites only allow passwords to a certain size and criteria i.e. 大写字母、数字等. 大多数还没有改变到新的标准.
Keeping the format you have for the time being is still your best bet. There are a lot of other things which go into why keeping the format you have now is best.”