In light of the recent security breaches of huge websites such as Gawker, Sony and Nintendo I am concerned about an issue that affects us all: Is my password secure?
Are your passwords secure?
In cases where security has been breached and your password has been extracted from a database, the answer is no, your password is not secure any more.
Since the attacks, a number of sites have popped up, which help people to find out whether their password has been breached or not. This should help you make an informed decision as to whether you need to change your passwords or not.
- Did I get Gawkered?
- Should I change my password?
- Has Lulzsec leaked your personal details?
- Find Out if Your Passwords Were Leaked by LulzSec
Security breaches aside, to answer the question, you need a way to measure security.
Take the password strength grower Naked Password (Safe for Work), it has a tiny pixelated woman, which tastefully removes her clothing as type your password. This works by providing a point for each level of security, there are 5 levels:
- if password bigger than 5 give 1 point
- if password has both lower and uppercase characters give 1 point
- if password has at least one number and at least 1 other character give 1 point
- if password has a combination of other characters and special characters give 1 point
- if password bigger than 12 give another 1 point
Each “point” means that Sally removes another piece of clothing.
Meanwhile Microsoft takes a similar, approach with 6 levels to creating a strong password:
- Start with a sentence or two (about 10 words total).
- Think of something meaningful to you.
- eg: Long and complex passwords are safest.
- Turn your sentences into a row of letters.
- Use the first letter of each word.
- eg: lacpasikms (10 characters)
- Add complexity.
- Make only the letters in the first half of the alphabet uppercase.
- eg:lACpAsIKMs (10 characters)
- Add length with numbers.
- Put two numbers that are meaningful to you between the two sentences.
- eg:lACpAs56IKMs (12 characters)
- Add length with punctuation.
- Put a punctuation mark at the beginning.
- eg:?lACpAs56IKMs (13 characters)
- Add length with symbols.
- Put a symbol at the end.
- eg:?lACpAs56IKMs” (14 characters)
You can even check your password with Microsoft to see if your password is strong enough for them.