Password Phrases

Having a password phrase makes it easier for you to remember your password without making it easier for somebody to guess or hack.

When coming up with a password, people tend to prefer lower case letters over upper case, letters over numbers, and numbers over special characters. People also tend to put numbers and symbols at the end of the password. Hackers know these tendencies, and that makes it even easier for them to crack passwords. Hackers even know the common tricks, like substituting the letters "o" and "i" for the numbers "0" and "1".

A password cracker program can be used to guess your password by trying millions of combinations of numbers, letters, and special characters per second. It will try words, numbers, special characters, and combinations of those together. Depending on the power of the computer, a five character password that is all lower case letters with no numbers or special characters can be cracked in minutes. A five character password with lower case letters, upper case letters, numbers, and special characters, can be cracked in days.

There are two common approaches to password phrases: stringing random words together into a phrase, and taking the first letter of every word in a phrase.

 

First Letter of Every Word

This is technically the weaker of the two methods (but is listed first because it helps prove a very strong point later on). For this method, you create a phrase that is easy to remember. It can be something personal about you, lyrics from a song, etc. Then, you take the first letter from each word and keep punctuation.

The passphrase:
Kent State University is the number one university in Ohio. Go golden flashes!

Becomes the password:
KSUit#1uiO.Ggf!

 

Stringing Words Together

The second method involves stringing random words together. This method is the stronger of the two because of the sheer length of the password.

Lets say I take four words from the passphrase used above:
Kent number Ohio flashes

The password becomes:
KentnumberOhioflashes