Three Random Words Make for Better Passwords than Complex Sequences, Experts Say

Tsing

The FPS Review
Staff member
Joined
May 6, 2019
Messages
12,877
Points
113
cyber-security-blue-lock-1024x576.jpg
Image: TheDigitalArtist (Pixabay)



Passwords leveraging complex sequences of uppercase letters, lowercase letters, numbers, and symbols are widely believed to be more secure than simpler alternatives, but that’s not something that cyber security experts in the U.K. agree with.



In a new blog post explaining why complexity requirements are overrated, the National Cyber Security Centre (NCSC) urged companies and other organizations to accept passwords comprising three random words as a more effective way of keeping users’ accounts secure.



Although complex strings make sense on a surface level, the NCSC argued that these requirements are actually more likely to result in weaker passwords, as they compel users into choosing predictable and exploitable patterns (e.g., replacing the letter “o” with a zero).



The NCSC believes that the use of three random words is preferable...

Continue reading...
 
Last edited by a moderator:
I’ve always heard to just use the opening line to a poem, song or nursery rhyme. Make it memorable, but long.
 
My wife thought I was crazy for using a password manager. We have some services that have those really difficult-to-meet password requirements, and just writing them down in a notepad was no longer cutting it.

So then I changed our bank account password to one of those 24 character random sequences. She stopped laughing and asked for the download for the app.
 
Become a Patron!
Back
Top