SECOND: Create a Password Convention

September 16, 2008 · 17 comments

Do you have so many passwords already that they could throw a convention? How would you like to know about a simple way to have a different secure password for every account that you can easily “remember” whenever you need it – without looking it up? Read on.

First you need to understand what makes a good (i.e., difficult to crack) strong password. The easiest way to do that is to know what weak passwords are. Instead of explaining all the variables I’ll just offer how I create password conventions for clients.

  1. First two to four letters of the site where the password will be used
  2. A number the same length as the number of letters you selected (2-4)
  3. A special character – not all special characters are acceptable on all systems
  4. Decide what order you wish to combine them in and write down your pattern

Here are some examples of patterns you could use:

  • Three letters, special character, three numbers
  • Three numbers, special character, three letters
  • Take a word and insert numbers and special characters in specific positions

Those are the basic components of your new password system. Even the simplest version is a fairly difficult password to crack. If you’re really security conscious you can make passwords stronger by:

  • Using both upper and lower case letters
  • Using more special characters
  • Making the way you combine them more complicated

Here are some SIMPLE examples to help you understand more clearly:

  • Convention:  first three letters, special character, three numbers
  • Password for Yahoo:  yah-824
  • Password for Google: goo-824
  • Password for Microsoft: mic-824

Even though these are very simple examples they are much more difficult to crack than commonly used passwords. I would recommend something a little more creative as someone who had one of these MIGHT be able to guess your pattern. Feel free to make your convention more complicated so it is even more secure.

The key is to make your password convention easy enough to remember and keep it consistent enough to actually use it. If you want really secure passwords make the convention complicated and write only the pattern down. If you change your passwords you can change your pattern and even write down the new pattern or even some notes and even if someone finds them they won’t be able to figure out your passwords.

TIPS:

  • Use a number you know and don’t write it down
  • Use a base word broken up by inserting your numbers and special characters into it
  • Use both upper and lower case letters

Here is an example of a very complex pattern written down in your own unique code:

  • Write down a12B%3c and no one will ever guess what your passwords are

So what does a12B%3c mean? Here is the translation:

  • You have three letters – say yah for Yahoo or goo for Google
  • You have three numbers – any three numbers you can remember
  • You have a special character – in this case the percent (%) sign
  • a is your first letter – make it lower case
  • B is your second letter – make it upper case
  • c is your third letter – make it lower case
  • Your numbers plug in where the 1, 2, and 3 are

If your number is 824, your passwords are:

  • Yahoo – y82A%4h
  • Google – g82O%4o
  • Microsoft – m82I%4c
  • US Counties – u82S%4c

While this may seem confusing at first, once you get used to it you’ll never be without a password as long as you can remember (or have with you) your pattern. Your passwords are strong and unique but as you move from site to site while working you’ll be able to recall what one you haven’t used in a long time is because it is similar to one you use every day.

WARNING: All passwords can be cracked with enough time, computer power, and motivation.  Using this convention idea is not as secure as using totally random passwords, especially if someone had access to more than one of your passwords and recognized your pattern.  How strong your password needs to be depends on what you’re securing.

ADDITIONAL RESOURCES:

Read the Best of GrowMap or Stay In The Loop!

Subscribe to the GrowMap feed via RSS or Email to receive notifications when new posts are published. Follow GrowMap on Twitter too!

{ 15 comments… read them below or add one }

Danny who writes about Pole chain saw October 28, 2011 at 11:59 pm

Wow, so complicated I imagine this is almost how a spy would make his/her password.
I just use some random word with a number and a capital letter.
(Maybe saying this here is not that smart haha, but then again, maybe it is different than I say.)

I just have the bad habit of telling many friends my password if they need to access something. I only use 4 different passwords and when some place forces me to change my password then I change it into one of the other passwords and the next time they ask me to do it again I will change it back to the original. That way I can make a mistake and write the wrong password but always get the right password within the usual 3 chances.
Danny would love you to read ..Poulan Pro PP446ET 8-Inch Gas Powered Pole Chain SawMy Profile

Reply

growmap
Twitter:
November 1, 2011 at 9:17 am

Twitter: @GrowMap

Hi Danny,

While it may seem complicated, once you memorize your convention and use it you can remember your password for almost any site instantly which can come in handy if you need to access any account from a different computer for any reason.

A random word with a number and capital letter can be a strong password especially if you put the number in the middle of the word somewhere so it is no longer a word that can be found in a dictionary but instead two non-sensical “words”. Even with your “hint” no one is likely to break your passwords.

Reply

wny glass block windows June 23, 2011 at 5:21 am

Thank You for this!!can i share this to others?It will help them a lot!

Reply

growmap
Twitter:
June 23, 2011 at 2:45 pm

Twitter: @GrowMap

Yes, you can share the information.

Reply

Buffalo Tees
Twitter:
June 23, 2011 at 12:50 am

Twitter: @stutterwear

Guard your password..its your first line of defence

Reply

David who writes about Bissell Rug Cleaner May 23, 2010 at 6:29 pm

These are very informative tips. I think I am going to have to change some of my passwords now.
.-= David@Bissell Rug Cleaner´s last blog ..Bissell Spot Lifter =-.

Reply

hizlindir March 27, 2010 at 9:58 am

thank you so much for useful informations.

Reply

Daniel who writes about spanish translation March 27, 2010 at 7:19 am

A very interesting way to protect the safety of the software. In my case I forget to change the passwords, so I like those programs requiring a change after some time of use.

Reply

Admael February 10, 2010 at 10:56 am

Thanks for your tips, are really helpful for me. I should change most of my passwords

Reply

sam who writes about dictionary phrasal verbs
Twitter:
November 22, 2009 at 12:43 pm

Twitter: @alinkbuilder

really wonderfully written and excellent tips, i appreciate it that you shared so useful and helpful with the readers of this blog.

Reply

George May 30, 2009 at 10:57 am

I have used many complicated passwords during the past and I always have a great success on forgetting them :) . Right now every password I use I note it to a small piece of paper which I carry always with me.

Reply

Internet Strategist who writes about GrowMap
Twitter:
October 8, 2009 at 9:28 am

Twitter: @GrowMap

Hi George,

I sure hope you never lose that piece of paper! You do keep a backup copy somewhere?
.-= Internet Strategist @GrowMap´s last blog ..Social Networking is NOT Chat =-.

Reply

Lisa May 15, 2009 at 11:46 am

Thanks for sharing such a great information.

Reply

Money Academy
Twitter:
April 26, 2009 at 5:52 pm

Twitter: @smasra

i used to make my passwords from my mother language so it is difficult that someone discover it ( my language is Arabic ). and also use something like numbers and ^%$#@* to make it more difficult .

Money Academy’s last blog post..Applying for a new job ? need a CV ? so learn how to write or build a prefect and effective cv

Reply

Internet Strategist who writes about GrowMap
Twitter:
October 8, 2009 at 9:29 am

Twitter: @GrowMap

Hi Mohammed,

That is a good idea for those who speak another language but the same guidelines apply about not using words found in ANY dictionary. Your passwords may be more challenging for me but probably not for others who can write Arabic.
.-= Internet Strategist @GrowMap´s last blog ..How to Evaluate Your AdWords Accounts =-.

Reply

Leave a Comment

CommentLuv badge
This blog uses premium CommentLuv which allows you to put your keywords with your name if you have had 0 approved comments. Use your real name and then @ your keywords (maximum of 5)

{ 2 trackbacks }

Previous post:

Next post: