Jump to Main ContentJump to Primary Navigation
Top

The secret to a safer password isn’t what you’d expect

1.2.jpg
1.1.jpg

What’s your strongest password?

Don’t worry, we’re not looking to log on to your Facebook account and ghost post that you heartily endorse Donald Trump and definitely want his babies. We just want to make sure you actually remember the thing.

After all, considering today’s generation are signed up to many internet accounts – three types of social networking, one for the App store, another two for email (work and personal), and another for banking – it’s no surprise we're constantly changing passwords.

You may have also seen a rise in mandatory password changes. Forced by either overzealous work admins or simply because you forgot the one you had, anyone would imagine these changes to 'stronger' passwords were keeping our online identities safer than ever. 

Well not according to Lorrie Cranor they're not. In fact, the Chief Technologist for America’s Federal Trade Commission and a computer science professor at Carnegie Mellon believes they might actually be putting you more at risk of being hacked. Writing on the FTC website, she explained:
 
“There is a lot of evidence to suggest that users who are required to change their passwords frequently select weaker passwords to begin with, and then change them in predictable ways that attackers can guess easily. Unless there is reason to believe a password has been compromised or shared, requiring regular password changes may actually do more harm than good in some cases. (And even if a password has been compromised, changing the password may be ineffective, especially if other steps aren’t taken to correct security problems.)

So there you have it, whether it's born from a reluctance to stray too far from your tried-and-tested Password123 (or whatever you’d scribbled on your hand in Biro), or just because you're subliminally sick of changing it, the more frequently you are asked to input a new password the lazier your brain becomes at crafting the alternative. So in future you might want to try sticking to your old one for as long as possible.

Additionally, Cranor also ponders as to whether companies responsible for mandatory password changes might be best changing tack:

‘Mandated password changes are a long-standing security practice designed to periodically lock out unauthorized users who have learned users’ passwords. While some experts began questioning this practice at least a decade ago, it was only in the past few years that published research provided evidence that this practice may be less beneficial than previously thought, and sometimes even counterproductive.’

Keep safe out there, people.

[Via: Wired]

Related

facebookprivacy.jpg

Facebook is in trouble for snooping on people who aren't members

low-iphone-battery.jpg

Apple just admitted your favourite battery-saving trick doesn’t even w

1.jpg

Teenagers reacting to Windows 95 will make you feel 1000 years old

Comments

More

The new Nokia 3310 has completely fucked up Snake

Why? Just why?

by Dave Fawbert
27 Feb 2017

Everything we know about the new Nokia 3310

The brick is back

by Matt Tate
24 Feb 2017

The not-at-all creepy future of Tinder, according to its boss

Dating meets Pokemon Go

by Matt Tate
24 Feb 2017

Instagram's latest update lets you group up to 10 photos in a post

This actually looks like a great new feature

by Matt Tate
22 Feb 2017

This might be the greatest Rocket League goal ever scored

They think it's all Rover

by Gary Ogden
20 Feb 2017

Crash Bandicoot: the greatest game I ever played

As its PS4 return is announced, one writer salutes one of the best platformers of them all

by Ryan Young
17 Feb 2017

TFL has been tracking you on the tube and the data is fascinating

Catnip for the tube heads

by Dave Fawbert
15 Feb 2017

20 Things You'll Only Understand If You Owned A Nokia 3310

14 Feb 2017

The Nokia 3310 is getting a relaunch (yes, really)

The return of the King

by Gary Ogden
14 Feb 2017

The new iPhone looks like it's going to have wireless charging

A huge move from Apple

by Dave Fawbert
13 Feb 2017