Skip to main content
All CollectionsIT-SupportIT-Security
Creating secure passwords
Creating secure passwords

How do I create a secure password?

Updated over a year ago

In the digital world, your passwords are the key to your personal and professional information. A strong password protects you from identity theft, data theft and unauthorized access to your sensitive data. A weak password, on the other hand, can be easily guessed or cracked, leading to significant security risks. It is therefore essential to give the security of your passwords top priority.

Criteria for a secure password

A secure password should fulfill the following criteria:

  1. Length: At least 12 characters long.

  2. Complexity: A mixture of upper and lower case letters, numbers and special characters.

  3. Uniqueness: A different password should be used for each account.

  4. Unpredictability: Do not use easily guessable information such as birthdays, names or simple patterns such as "123456".

In addition to the criteria already mentioned, such as length, complexity, uniqueness and unpredictability, there are other additional criteria that make up a secure password and should be taken into account when creating passwords:

  • No personal information

    Avoid using easily accessible information such as your name, date of birth, address or similar identifiable details or information that can be found about you on the Internet in passwords.

  • No dictionary words

    Do not use complete words that can be found in a dictionary, as these can be more easily cracked by so-called dictionary attacks.

  • Deviation from standard patterns

    Avoid common patterns (such as "abc123", "password1", "qwerty") and keyboard paths.

  • No repeated or consecutive characters

    Avoid passwords with repetitions (such as "aaabbb", "123123") or consecutive characters (such as "123456", "abcdef").

  • Adaptation to specific requirements

    Some systems or websites have special requirements for passwords (e.g. at least one symbol, no special characters). Make sure that your password meets these requirements.

  • Avoid default passwords

    Do not use default passwords such as "admin", "password" or "123456", which are often set as the default. Always change preset passwords to a secure individual password.

  • Do not use well-known quotes or phrases

    Avoid well-known quotes or phrases as they can be guessed by advanced cracking tools.

  • Periodic checks and updates

    Review the strength of your passwords regularly and update them to keep up with the latest security recommendations.

These additional criteria help to ensure that your passwords are more robust against various types of attacks and help to improve your digital security.

Creating secure passwords

Three different techniques can be used to create a secure password based on the aforementioned criteria:

  1. Random word combinations
    Use a combination of random words that make no sense to outsiders.

    Example: GiraffeBookCoffee7!

    This password combines three random words ("giraffe", "book", "coffee") with a number and a special character to increase complexity.

  2. Creative techniques

    Create passwords using mnemonic phrases or song lyrics, for example by taking the first letter of each word and inserting numbers or symbols.

    Example: Iw2tT!p4Su@8pm

    This password could be derived from the sentence "I wanted 2 times tea, please 4 sugars at 8pm!". It uses the first letters of each word, the number in the sentence and a special character at the end to create a strong and sufficiently long password.

  3. Password manager

    Use a password manager to generate complex passwords and store them securely.

    Example: Xq4!vB92@pZ3

    This is an example of a password generated by a password manager such as 1Password. It contains a random mix of letters, numbers and special characters, which makes it very secure.

Safe handling of passwords

A secure password is an essential part of digital security, but how you handle these passwords is just as important. Even the most secure password is useless if it is easy for unauthorized persons to find or guess.

Therefore, follow these basic guidelines to manage your passwords securely:

  • Do not write down passwords
    Avoid writing down passwords on paper, printing them out or storing them in unencrypted digital notes.

  • No visible storage of passwords
    Avoid storing passwords in easily accessible or visible places, such as notepads on the screen or under the keyboard.This applies in particular to the workplace, as many people often have unhindered access here.

  • Do not print out password lists
    Avoid using printed password lists. Be aware that losing a list with all your passwords can have dramatic consequences for you. Identity theft is extremely easy and can also allow unauthorized access to all the services and accounts you use. There is a particularly high risk here if you carry such lists with you when traveling and then, for example, your bag with the list is stolen from your car or you forget it on the train or leave it unattended in your seat.

  • Safe storage of passwords
    If you need to write down passwords, keep them in a safe place, such as a locked cupboard or safe. It is even better not to write them down in the first place.

  • Avoid unsecured transmission of passwords

    Never send passwords unencrypted by email. Instead, use encrypted messaging services or specialized tools for the secure exchange of passwords, such as 1Password. If you need to send a password by email, use a one-time, temporary password that is changed after the first use.

Further security measures

In addition, the security of your information and data can be increased by further security measures:

  • Change your passwords regularly
    Change your passwords regularly, especially if you suspect that they have been compromised. You can easily find out if a password has been compromised using a password manager such as 1Password.

  • Avoid phishing
    Never give out passwords in response to unsolicited emails or phone calls. Phishing e-mails are often sent which redirect you to fake login pages and try to steal your login details. Find out about phishing defense strategies.

  • Two-factor authentication
    Enable two-factor authentication wherever possible. Supplement passwords with additional authentication methods such as one-time passwords (OTP), biometric data or security tokens. Corresponding authentication methods can be easily managed by a password manager, such as 1Password.

By following these guidelines, you can minimize the risk of security breaches and effectively protect your digital information.

Using a password manager

A password manager is the central tool for improving your password security. With a password manager, you can automatically generate and manage secure passwords. You no longer have to remember all your passwords as the manager saves and encrypts them for you. It also often allows you to make regular password changes easily and checks the strength and security of your passwords.

We recommend that you use the 1Password password manager.

Download

This client information is also available for download:

Attachment icon
Client information Creating secure passwords.pdf
Did this answer your question?