Do camera names make for secure passwords?

[Spanik]

Here is a typical password I use.

NVBxNDusjGp9rroWfU

The passwords are generated based on pseudorandom, simulated dice throws. Obviously I don't memorize these. They are generated by a password management App called 1Password. I use a different password for each site/login and often the App (not my browser) autofills the username and password. There are many alternates to this app.

In general, the easier a password is to remember, the less secure it becomes. Secure passwords, especially when they are forced to expire are notoriously insecure. It is difficult to memorize these passwords so people write them down. In many businesses/institutions of all sizes it is trivial to access their networks if you are inside the facility. People write passwords on Post-Its and stick them under their keyboards, etc.

Re-using the same password on several on-line accounts is convenient, but increases risk quite a bit.

Passwords in themselves are not very secure. And having to use an app where you have no idea how good those generated passwords are isn't any better than just a simple password. How do you use them when you do not have the app around?

I have 3 "levels" of passwords. One for simple things, one for cases where more personal details are used and then for each use where "security" is usefull. If it has to be really secure then 2-factor autentication is needed. But if the other party doesn't believe that and forces you to use a simple password, then anything goes.

 

[shadowfox]

I use "Lecia" on all my passwords.

Nobody will ever guess that.