6 Most Common Misunderstandings of Passwords

Are passwords saving the day for us? YES! They are the most used form of authentication, not only on the internet but also on the telephone, at the cash machine, for opening the safe, and even to take books out of the library. You keep your accounts safe thanks to them. That’s why, it is really important to have strong ones for our accounts.

Set a password

Bad advice about passwords is easy to come by. Many institutions, especially banks and government departments, are notorious for arbitrarily restricting passwords. The reasons for doing so may be of varying nature.

Banks, social media sites and governments share a lot of contents to educate the users. Nevertheless people go from easiest way which they get poor passwords.

A result of poor security practices many sites still store their passwords in plaintext, meaning they have to restrict the types of characters and lengths of passwords of their users. Secondly, these poor passwords provide an insecure environment for hackers and attackers.

As a rule of thumb, it is probably a good idea to be suspicious of any site that places restrictions on your password other than a minimum length, as there are no good reasons to.


Major Misconceptions

1. Passwords are secure compared to all of the other options

Passwords are saving the day and they are better instead of phone numbers, government ID, or biometrics. However, they are still the top authentication method, especially when enhanced with two-factor authentication. Take attention! Not all two-factor techniques are the same!

Here is what we expect from a good password:

-It has to contain a random collection of letters (uppercase and lowercase), numbers and symbols

-It has to be at least 8 characters or longer

-You must use a unique password for every different account

2. Passwords don’t have a maximum length

Another common mistakes about passwords is actually they don’t have any maximum length. You can set your passwords as many characters as possible. A service would usually hash and salt your password and only store the hash, meaning there’s no need to worry about the length. In addition, long passwords are safer than small ones because the length provides you to have less predictability unless your passwords have the minimums like uppercase and lowercase letters, signs, numbers etc. Mostly, it is enough to have it around 16 characters but if you are encrypting highly sensitive data, for example, your personal files or Bitcoin wallet, you are better off with 23+ characters.

3. The length is important!

Added length makes your password more secure than it does with more diverse characters.

 back up

4. You can include anything into a password!

While not all sites might accept them, your password can literally be anything. There can be some sites which may not accept them but your password can literally be anything. No matter if it’s non-Latin script, rarely used Unicode, or even emojis, if you can type it, it’s a valid password.

5. Ignore easy to memorize passwords

There’s really no need to remember more than two or three passwords—because there’s an app for that.

Password managers are a great example of how security tools can make your life safer and more convenient and will generate and store secure and strong passwords without you having to worry about remembering them, ever. Some will even automatically fill your passwords into your websites, protecting you from phishing or accidentally typing them elsewhere, like your Facebook status, for instance.

The only passwords you should have to remember are the password to your computer and the one for your password manager.

6. Encrypted password can save your day!

While there may be many attempts to replace the password with something else, we currently have no idea how to do that securely.

Biometrics like facial recognition or fingerprints hugely lack in security, and while they may be useful in identifying you, they are not useful for authentication. Asymmetric cryptographic keys could be part of a way of a new system, but they might still be susceptible to man-in-the-middle or phishing attacks.

Don’t worry, it’s easy to mitigate password hack risk. The internet might sometimes seem like a scary place, but with some caution, common sense, and some helpful tools, it is easy to avoid even the most serious of threats.

Make sure your computer and phone are always up to date

Use a password manager to store strong and unique passwords

Exercise caution when clicking links in emails or sites. Save sites you commonly visit as a bookmark