Jump to Main ContentJump to Primary Navigation
Top

The secret to a safer password isn’t what you’d expect

1.2.jpg
1.1.jpg

What’s your strongest password?

Don’t worry, we’re not looking to log on to your Facebook account and ghost post that you heartily endorse Donald Trump and definitely want his babies. We just want to make sure you actually remember the thing.

After all, considering today’s generation are signed up to many internet accounts – three types of social networking, one for the App store, another two for email (work and personal), and another for banking – it’s no surprise we're constantly changing passwords.

You may have also seen a rise in mandatory password changes. Forced by either overzealous work admins or simply because you forgot the one you had, anyone would imagine these changes to 'stronger' passwords were keeping our online identities safer than ever. 

Well not according to Lorrie Cranor they're not. In fact, the Chief Technologist for America’s Federal Trade Commission and a computer science professor at Carnegie Mellon believes they might actually be putting you more at risk of being hacked. Writing on the FTC website, she explained:
 
“There is a lot of evidence to suggest that users who are required to change their passwords frequently select weaker passwords to begin with, and then change them in predictable ways that attackers can guess easily. Unless there is reason to believe a password has been compromised or shared, requiring regular password changes may actually do more harm than good in some cases. (And even if a password has been compromised, changing the password may be ineffective, especially if other steps aren’t taken to correct security problems.)

So there you have it, whether it's born from a reluctance to stray too far from your tried-and-tested Password123 (or whatever you’d scribbled on your hand in Biro), or just because you're subliminally sick of changing it, the more frequently you are asked to input a new password the lazier your brain becomes at crafting the alternative. So in future you might want to try sticking to your old one for as long as possible.

Additionally, Cranor also ponders as to whether companies responsible for mandatory password changes might be best changing tack:

‘Mandated password changes are a long-standing security practice designed to periodically lock out unauthorized users who have learned users’ passwords. While some experts began questioning this practice at least a decade ago, it was only in the past few years that published research provided evidence that this practice may be less beneficial than previously thought, and sometimes even counterproductive.’

Keep safe out there, people.

[Via: Wired]

Related

facebookprivacy.jpg

Facebook is in trouble for snooping on people who aren't members

low-iphone-battery.jpg

Apple just admitted your favourite battery-saving trick doesn’t even w

1.jpg

Teenagers reacting to Windows 95 will make you feel 1000 years old

Comments

More

Super Mario in Grand Theft Auto is weird and awesome

Who would've thought Mario would get into a knife fight in a park?

by Jamie Carson
18 Jan 2017

The only Vines worth preserving

The most important cultural artefacts of our time

by Tristan Cross
17 Jan 2017

Hurrah: The Nintendo Switch now has a price and release date

Here's everything you need to know about the new console

by Tom Fordy
13 Jan 2017

The best underwater photographs of 2016 are staggeringly beautiful

Aquatic snaps that made a splash

by Dave Fawbert
12 Jan 2017

Using Google Maps actually does ruin your sense of direction

"Make a U-turn where possible"

by Dave Fawbert
11 Jan 2017

Netflix releases 8-bit game featuring Narcos and Stranger Things

Goodbye, productivity.

by Emily Badiozzaman
10 Jan 2017

The original Game Boy is coming back

Time to dust off your Pokemon Red & Blue cartridges

by Jamie Carson
10 Jan 2017

Watch Steve Jobs launch first iPhone 10 years ago

Today marks 10 years since Steve Jobs presented the world with this iconic product, but it could have been so different

09 Jan 2017

The best gadgets to launch at the biggest tech conference in the world

Christmas 2017 can't come early enough

by Joe Ellison
05 Jan 2017

This is why hitting the snooze button is bad for your health

If you snooze, you really do lose

03 Jan 2017