Synthesis, Inc. - Synthesis, Inc. - Administrative Support for Creative People

This is your perennial reminder that it’s time to review and change your passwords. Going through this process is a little bit like doing your taxes. Nobody gets excited about doing it – but it still needs to be done.

First – let’s talk about the worst passwords to use. In November SplashData, a developer of password software, released the most common (and worst) passwords in 2011:

• password
• 123456
• 12345678
• qwerty
• abc123
• monkey
• 1234567
• letmein
• trustno1
• dragon
• baseball
• 111111
• iloveyou
• master
• sunshine
• ashley
• bailey
• passw0rd
• shadow
• 123123
• 654321
• superman
• qazwsx
• michael
• football

If any of these passwords are yours then you’ll want to change it right away! But even if yours is not on the list – it’s as good a time as any to update and change your passwords.

A 2007 research study by Microsoft revealed that we each have an average of 25 accounts that require a password. We also use a password about eight times a day.

Experts have taught give us two Golden Rules: “Don’t write it down” and “Never use the same password for more than one account”. However – these rules seem to contradict each other. Not only would you have to remember dozens of passwords – you’d have to remember which site correlates with each password. Several corporate systems initiate a ‘lock down’ after the third incorrect entry of a password – making you call a system administrator to reset your login.

So how can you reconcile the conflicted Golden Rules and still have a strong password? I use a Theme and Variation system for most of my passwords.

First, choose a theme – in this example we’ll use the TV show “I Love Lucy”. From this theme we want to create at least three passwords – low, mid and high security.

The Low Security Password: I_Love_Lucy

Incorporating upper and lower case letters this password is bare basics, but still registers a strong 77% on this handy Password Meter. Some of your low security sites will require a number be included in the password – in those cases add a 1 after the regular password. If you get an error using the usual password, try it again with a 1 and you’ll get through. By the way, adding that one raises the Password Meter to 91%! Not bad for a low level password!

This password is for any website that doesn’t store anything more than you might find in the phone book. Your name, address, phone number…but that’s it! Maybe it’s a conversation forum you’re a part of, or a casual game site. It could be your local pizza delivery place (as long as they don’t store your credit card number!). Use this password for the minor things.

The Mid-Security Password: IloveLucy1225

By removing the underscores and adding a special date (in this case Christmas – but try a date significant to only you!) the Password Meter jumps to 98%.

Your mid-level password is for sites that store personal information – but NOT financial information. Your Social Media accounts – Facebook, Twitter, LinkedIn – would all use this password.

The High Security Password: !1ov3Lu)Y25

Not only does this password look confusing to a stranger, it would sound confusing if you read it out loud: Exclamation point, one, o, v, three, capital L, u, close parenthesis, capital Y, 25. The Password Meter approves – giving this password a 100% strength rating.

You would use this password for any account that has the power to ‘buy’ something (Like Amazon and iTunes) as well as online banking and accounting systems. I also recommend this level of password for your email and website administration panel. It’s the type of password that others would have trouble remembering – even if you rattled it off to them – but it’s not difficult to type every day if you have to.

Of course, the I Love Lucy theme is just an example. Choose your own theme – your first car, favorite job, vacation spot, team, book or childhood cartoon character (Just not superman – see the list above!).

Now, to get past the ‘never write it down’ problem – instead write down a reminder of your theme. For example –I could leave a post-it note inside my top desk drawer that says “You got some ‘splainin to do!” or “Oh Ricky!” You can even remind yourself what level of password you used: “Ricky’s girl – mid” (To remind you to use the mid-level password)

Finally, there’s the Maximum Security Password

This is the password used only once or twice a year. I use it to login for domain registration, website access via FTP and website database access. This password is one you don’t really need to remember – you just need access to it. So I recommend using this online password generator to create a completely random password. Then keep this password saved in a password protected document, a safe deposit box or a fireproof safe in your office. Any way to insure a double layer of security would be best.

Just like getting used to writing the new year on your checks and invoices, you’ll go through a brief adjustment period as you remember your new password system. A minor inconvenience for major peace of mind!