The password creation method from this post is outlined below.
- Start with a dictionary word or short phrase, between 8 and 16 characters in length. This is your seed.
- Pick three of the letters in your seed. Find a good reason for choosing those letters.
- Remove each instance of one of the letters in your seed.
- Capitalize each instance of the other two letters in your seed.
- Count the number of letters you changed. This is your change value and place that number at the end. Placing the number at the end is weaker than placing a single digit elsewhere in the password, but is an acceptable option for passwords of at least 8 characters.
- To further strengthen your password, insert a special character before the character at the position of your change value. This part was not done in the prior post, but is highly recommended.
Now, when it is time to use the password, you can recall the simple word, the special character and the letters that were modified, the rest can be derived!
Example #1
- chocolate
- a, c, o (first two letters alphabetically and the last vowel in the seed)
- chclate
- ChClAte
- ChClAte5
- ChCl#Ate5
Example #2
- pictureframe
- r, t, u (last three letters alphabetically in the seed)
- pictreframe
- picTRefRame
- picTRefRame4
- pic^TRefRame4
Example #3
- dictionary
- a, i , o (the vowels in the seed)
- dictinary
- dIctInAry
- dIctInAry4
- dIc<tInAry4
Example #4
- itisreallylate
- r,s,t (three letters alphabetically sequential and found in the seed)
- itireallylate
- iTiReallylaTe
- iTiReallylaTe4
- iTi!ReallylaTe4
As always, do not use ChCl#Ate5, pic^TRefRame4, dIc<tInAry4, iTi!ReallylaTe4 or any other example from this blog as your password.
Advertisement
February 17, 2010 at 6:18 pm
Social comments and analytics for this post…
This post was mentioned on Twitter by OnlinePwordSec: @intel_chris Thanks for the tweet, the link doesn’t work for me so here’s a link to the post: http://ow.ly/18q3h #password #security…
March 14, 2010 at 9:32 pm
[...] (from this [...]