How to build an ‘uncrackable’ password

Computer display requiring password access. — Image © Tim Sandle

In today’s digital age, it might be reasonable to assume that computer users will be adopting the safest solutions for password security. However, many rely on easily guessable combinations. According to recent studies over 15 billion accounts are at risk, with an many compromised due to weak passwords. 

The study comes from the Soax team, who have compiled the top three unbreakable password combinations that are nearly impossible to crack. This is with the aim of setting a new standard in online security.

Stepan Solovev, CEO & Co-founder at Soax, has told Digital Journal: “Security is only as strong as its weakest link, and that link is very often password protection.”

These password types are:

Alphanumeric Mixed with Symbols

Characteristics:
 

• Combines numbers, letters (both uppercase and lowercase), and symbols.
• Ideally, be more than 12 characters in length.

Strengths:
 

• This range of characters confuses brute force attack tools which rely on predictable patterns.
• A high number of possible combinations makes it tougher to crack.

Example: S3cUr!ty#4Ev3r
 

Passphrases with Unrelated Words

Characteristics:
 

• Consists of four or more random words, creating a nonsensical phrase.
• Incorporates spaces or special characters between words for added security.

Strengths:
 

• Longer passwords are generally harder to decode than shorter, even complex ones.
• Easier to remember but difficult to guess due to randomness.

Example: blue coffee mountain#jelly
 

The Use of Non-English Characters

Characteristics:
 

• Incorporates characters from non-English language alphabets and scripts.
• Can mix these with English letters and other symbols.

Strengths:
 

• Enhances the password complexity by introducing characters that are not typically included in brute force dictionaries.

Example: 日本52語@Ninja
 

In addition, it is important to perform periodic password changes; to use two-factor authentication; and to avoid common pitfalls such as keeping clear from using easily accessible personal information, such as birthdays or names, in your passwords. These are often first guesses in brute force or social engineering attacks.