Apply Now
Support Center

Blog

Your passwords are not secure

In 2003, a manager at the National Institute of Standards and Technology (NIST) authored a document on password best practices for businesses, federal agencies, and academic institutions. Now retired, the author admits that his document was misguided. Find out why and what great passwords are made of.

The problem

The issue isn’t necessarily that NIST advised people to create passwords that are easy to crack, but it did steer people into creating lazy passwords, using capitalization, special characters, and numbers that are easy to predict, like “P@ssW0rd1.”

This may seem secure, but in reality, these strings of characters and numbers could easily be compromised by hackers using common algorithms.

To make matters worse, NIST also recommended that people change their passwords regularly, but did not define what it actually means to “change” them. Since people thought their passwords were already secure with special characters, most only added one number or symbol.

NIST essentially forced everyone, including you and your colleagues, to use passwords that are hard for humans to remember but easy for computers to guess.

The solution

One cartoonist pointed out just how ridiculous NIST’s best practices were when he revealed that a password like “Tr0ub4dor&3” could be cracked in only three days while a password like “correcthorsebatterystaple” would take about 550 years.

Simply put, passwords should be longer and include nonsensical phrases and English words that make it almost impossible for an automated system to make sense of.

Even better, you should enforce the following security solutions within your company:  

  • Multi-factor Authentication – which only grants access after you have successfully presented several pieces of evidence
  • Single Sign-On – which allows users to securely access multiple accounts with one set of credentials
  • Account Monitoring Tools – which recognize suspicious activity and lock out hackers

When it comes to security, ignorance is the biggest threat. If you’d like to learn about what else you can do to fortify security, just give us a call.

Published with permission from TechAdvisory.org. Source.

Share this article:

Let's See if We're a Fit

We work best with growing firms who want proactive, executive-level IT strategy, not just help desk tickets.

If that’s you, we’d love to talk.

What You’ll Get From The Conversation:

  • Your Growth Readiness Score – A quick but powerful view of how well your current tech supports your business goals.
  • A Strategic Fit Assessment – Is your business aligned with how we deliver outcomes?
  • Real Recommendations – We’ll share what we’d do, even if we don’t work together.

 

We accept a limited number of new client partnerships per quarter, so let’s start the conversation.

LEARN MORE

Glenn Harris

Head of Sales

Glenn Harris

With over 25 years of business technology experience, Glenn leads our efforts in delivering reliable IT to growing businesses looking to achieve success.

Recent Posts
Categories

Contact Us To Learn More

Would you like to get in touch to learn more about our proven approach to managed IT services?

Fill out the form below and let’s connect.

"*" indicates required fields

Name*
Stay in the loop! Check this box to receive occasional updates and offers via SMS (optional).
This field is for validation purposes and should be left unchanged.

Your business deserves the best managed IT services and IT support in Nashville, TN. Don't settle for anything less.

Contact us today to learn how we can help supercharge your growing business, giving you the trusted technology, proven playbook, and friendly support your employees need to best the best.

Schedule My IT Checkup
©20252023 Stringfellow Technology Group.All Rights Reserved.
Schedule My IT Checkup
Support Center

Schedule a Call with Glenn