Editor’s note: For those of you reeling from the Vegas shooting last night, I’m right there with you. It’s so hard to understand why people make such devastating choices. Praying for our country and those in mourning today.
Man, passwords really chap my hide. I hate creating new ones and adding special characters to fulfill some website requirement. And I can’t ever keep them straight, so I’m always guessing wrong and having to click on that “Forgot your password?” link, which results in more garbage in my inbox.
For those who feel the same, it appears there may be a shift in the password recommendations from the pros. According to an NPR report, the National Institute of Standards and Technology suggests that we do away with complicated passwords and instead choose long, but simple ones that read like a phrase or sentence and aren’t loaded with exclamation marks and random numbers and capitalization.
The article states that the passwords we’ve been making have been “easy for bad guys but hard for legitimate users.” Furthermore, they suggest keeping passwords “simple, long, and memorable,” with lowercase letters and real English words. Yay!
The basis for the new recommendation is that longer passwords are harder to crack, and when people have to come up with complicated random passwords, we tend to simply meet the criteria, resulting in shorter passwords. In my own life, I happened to create one password based on an old anecdote, and even though it takes a long time to type, I have always remembered It—and it’s never been hacked.
I’m curious to see how long before different websites will change their own account-creating policies to reflect these recommendations. Do you think they WILL change the requirements at all, or will this suggestion just blow over? •