Back to Blog

How to Create and Keep Strong Passwords

How-to-Create-and-Keep-Strong-Passwords-Blog-ImageYour passwords are the lock and key to your life. And when it feels like there’s another big security breach every week, you want to be sure those passwords are strong and safe.

Follow the 6 steps below for super-strong passwords that will keep scammers guessing.

Step 1: Choose a password manager

The best way to ensure your passwords are secure is to use a password manager like 1Password, LastPass or KeePass. These services generate encrypted passwords for every website you use. You will then create one master password to use for logging into all of your accounts.

Step 2: Create an unbreakable master password

This code can open up every password of yours to potential scammers; so be extra careful about choosing one that is virtually unbreakable.

Follow these rules for a strong password:

  1. Make it long: Many sites require a password that is a minimum of 8 characters long, but a 12-character password is even stronger.
  2. Be creative: Avoid using names, places, and recognizable words, since these are easily cracked.
  3. Mix it up: Vary your capitalization and the kinds of characters you use, switching back and forth from letters to numbers to symbols.

Step 3: Update all your passwords

Next, sync all the websites and accounts you use with your password manager. Follow the guidelines on your password manager for this step, as they differ with each service.

When you’re through, you’ll only be able to log into these sites with your master password.

Some sites employ outdated systems that won’t work with a password manager. For these sites, you will need to use different passwords. You can slightly amend your master password for these sites, or create new ones using the guidelines above. It is best to use a different password for every site.

Step 4: Use two-factor authentication

Add another layer of protection by choosing two-factor authentication whenever you have the option.

Step 5: Be careful with security questions

Security questions are extremely insecure; anyone can Google the answers. If all a scammer has to do to retrieve your password is answer a security question, the strongest password is worthless. Treat security questions like passwords. Never answer them truthfully. Instead, make up mnemonics or nonsensical answers that are difficult to crack, but easy for you to remember.

Step 6: Don’t let your browser or phone “remember” your passwords

Keep your passwords in your head and not on your devices. Otherwise, you’ll be in deep trouble if your computer or phone is swiped.