Password expert regrets setting requirements.
The man who wrote a book on password management and password requirements while working for the National Institute of Standards and Technology in 2003 claims they don't actually help much and sometimes his requirements may be useless. Telling the Wall Street Journal, "Much of what I did I now regret."
Do you ever go to make a new account and come across a robot who grades your password weak, medium, or strong? Well... The man who worked with the U.S. government to help create 'strong' standards recently came out to publicly apologize, now age 72.
In his original document he claimed passwords should include special characters and everyone should reset their passwords after 90 days.
He came out publicly and apologized. Using obscure characters and numbers like @,!,1 don't actually help protect your valuable information. Length is key, not difficulty.
Long easy to remember phrases are better passwords than short random passwords your likely to forget. Sometimes even forcing you to write down your password just to remember it, making info more vulnerable.
He said when he made the recommendation to use numbers, capital letters, and special characters, he didn't really know much about what he was talking about...
Rainbowunicornprincess
(Rainbow Unicorn Princess)
is actually a better password than
Ra!nb0w
Due to the amount of characters needed to be in a specific order, it would take hackers much longer to crack long phrases than short random and obscure passwords. So when creating new passwords long easy to remember passwords are key, no need for numbers, special characters, or capital letters.
The man who wrote a book on password management and password requirements while working for the National Institute of Standards and Technology in 2003 claims they don't actually help much and sometimes his requirements may be useless. Telling the Wall Street Journal, "Much of what I did I now regret."
Do you ever go to make a new account and come across a robot who grades your password weak, medium, or strong? Well... The man who worked with the U.S. government to help create 'strong' standards recently came out to publicly apologize, now age 72.
In his original document he claimed passwords should include special characters and everyone should reset their passwords after 90 days.
He came out publicly and apologized. Using obscure characters and numbers like @,!,1 don't actually help protect your valuable information. Length is key, not difficulty.
Long easy to remember phrases are better passwords than short random passwords your likely to forget. Sometimes even forcing you to write down your password just to remember it, making info more vulnerable.
He said when he made the recommendation to use numbers, capital letters, and special characters, he didn't really know much about what he was talking about...
Rainbowunicornprincess
(Rainbow Unicorn Princess)
is actually a better password than
Ra!nb0w
Due to the amount of characters needed to be in a specific order, it would take hackers much longer to crack long phrases than short random and obscure passwords. So when creating new passwords long easy to remember passwords are key, no need for numbers, special characters, or capital letters.