- Contact Us
Passwords serve as the gatekeeper to an organization’s data and systems, keeping out unauthorized users and only allowing the right people to enter. The strength of an organization’s passwords can often be the deciding factor to whether they suffer a breach or data disaster.
Technology is continuously evolving and making it easier for attackers to automate the password-cracking process. The two most common password-cracking strategies are brute force attacks and dictionary attacks. Brute force attacks utilize technology to guess every possible combination of characters, while dictionary attacks utilize technology to guess all known words and find a match. These attacks can be mitigated by following the tips below to craft passwords that are extremely difficult for attackers to crack:
Using the tips listed here will assist in creating passwords that are extremely difficult to crack. It is recommended that organizational leadership mandate password strength requirements for staff with some or all the criteria listed above. Making these criteria required will mitigate the risk that users ignore best practices and continue using weak passwords. Many websites and apps have also begun forcing users to create strong passwords that are long and include some of these criteria.
The information in this blog post has been condensed into our Best Password Tips Checklist and is available for free download by clicking here. Compass IT Compliance has spent the past decade assisting organizations in both the public and private sectors in establishing and updating IT security policies. Contact us today to learn more and discuss your unique situation!