Password Encryption and Security: Best Practices

Password Encryption and Security: Best Practices image encryption and password security resized 600Password Encryption and Security: Best PracticesPassword security is easy, right? These days, programs and sites make you choose a complex password with at least one number, one symbol, one capitalized letter, etc. Besides, sites and programs encrypt all of that information. Right?


Unfortunately, it’s not that easy. Sites and web applications often give their users a false sense of security with their complicated password requirements and SSL encryption claims. In reality, complex password requirements may make it easier for a hacker to guess your password, as it provides them with a strategy for guessing a password based on a site or program’s password requirements and limitations. And encryption offers limited protection—hackers can analyze the encrypted password “hash” from a collected database and effectively reverse passwords from it.

Your business can’t afford the consequences of a data breach. Rather than relying upon the password requirements or encryption of a site or application, your best bet for password security is to create strong passwords and back them with a second layer of security.

Here are some tips for creating strong passwords:

  • Never, ever use the word “Password”, the number sequence “123,” or the name of the program or app in your password. These are very commonly used and, therefore, easy for hackers to guess.
  • Always change the default password that came with a program, device, or site.
  • Change your passwords at least every three months.
  • Get creative. Think of a password that even your best friend or spouse would never come close to guessing.

Beyond Strong Passwords

Creating strong passwords is an absolute must when protecting yourself and your network. But it’s important be aware that even the strongest of passwords provides only one layer of security—a layer that, historically, advanced hackers have been able to penetrate again and again. Using only passwords for authentication (single-factor authentication) can involve great risk, especially for businesses and organizations. After all, it only takes one employee’s compromised password to jeopardize your entire system.

For these reasons, I recommend that all of business clients (and anyone very concerned about sensitive data, etc.) consider multi-factor authentication software.

What is multi-factor authentication? Multi-factor authentication (MFA) requires users to present two or more of the three common authentication “factors” in order to gain access to a system: something you know (like a password), something you have (like a token or mobile device), and something you are (like a fingerprint or iris scan).

MFA is growing in popularity and will likely be commonplace in the near future. Cost-effective soft tokens and convenient mobile applications have made MFA systems much more accessible to everyday users and businesses of all sizes.

Consistently using password security best practices ensures that you’re strengthening your passwords to protect yourself and your business from a potentially disastrous security breach or phishing attack. But, only switching to a multi-factor authentication system will truly make your system impenetrable to outside attackers.

Learn more about multi-factor authentication in our free download, “12 Questions You Need to Ask Your Multi-Factor Authentication Vendor.”

More Tech articles from Business 2 Community:


Editor’s note:Yahoo Philippines encourages responsible comments that add dimension to the discussion. No bashing or hate speech, please. You can express your opinion without slamming others or making derogatory remarks.

  • Troops overrun BIFF bomb-making facility in Mamasapano
    Troops overrun BIFF bomb-making facility in Mamasapano

    Government troops captured Sunday a bomb and weapons factory of the Bangsamoro Islamic Freedom Fighters (BIFF) in Mamasapano, Maguindanao, the Armed Forces of the Philippines (AFP) announced yesterday. Col. Restituto Padilla, AFP spokesman, said the captured bomb and weapons factory is located inside an area controlled by radical Muslim cleric Ustadz Mohammad Ali Tambako at Barangay Dasikil in Mamasapano. …

  • No need for Revilla to visit son – prosecutors
    No need for Revilla to visit son – prosecutors

    Instead of filing an opposition, ombudsman prosecutors filed a manifestation yesterday expressing belief that there is no urgent need for Sen. Ramon “Bong” Revilla Jr. to visit his son at the Asian Hospital and Medical Center. “Based on the clinical abstract issued by the Asian Hospital on patient (Cavite) Vice-governor (Jolo) Revilla, which was submitted by accused Revilla in support of his Urgent Motion, Vice-governor Revilla is in stable condition and has stable vital signs, as of March 1, …

  • N. Korea fires missiles in anger at South-US military drills
    N. Korea fires missiles in anger at South-US military drills

    North Korea fired two short-range ballistic missiles into the sea and vowed "merciless" retaliation Monday as the US and South Korea kicked off joint military drills denounced by Pyongyang as recklessly confrontational. The annual exercises always trigger a surge in military tensions and warlike rhetoric on the divided peninsula, and analysts saw the North's missile tests as a prelude to a concerted campaign of sabre-rattling. "If there is a particularly sharp escalation, we could see the …

  • Couple married 67 years holds hands in final hours together
    Couple married 67 years holds hands in final hours together

    FRESNO, Calif. (AP) — After spending 67 years together as devoted husband and wife, there was no question how Floyd and Violet Hartwig would end their lives — together. …

  • How Islamic is Islamic State group? Not very, experts say
    How Islamic is Islamic State group? Not very, experts say

    CAIRO (AP) — Three British schoolgirls believed to have gone to Syria to become "jihadi" brides. Three young men charged in New York with plotting to join the Islamic State group and carry out attacks on American soil. A masked, knife-wielding militant from London who is the face of terror in videos showing Western hostages beheaded. …

  • Recruitment firm accused of worldwide scam
    Recruitment firm accused of worldwide scam

    Filipinos aspiring to work overseas should avoid dealing with a recruitment agency that has duped jobseekers worldwide, Labor Secretary Rosalinda Baldoz said yesterday. The National Bureau of Investigation has padlocked Global Visas Inc., which is based in Cebu. Baldoz said the agency’s parent company, ICS Global Visas Inc. based in the United Kingdom, has reportedly collapsed and left thousands of applicants without jobs.  “Global Visas was in the limelight this week, following its reported …

  • Lawmakers split on tax exemption for Pacquiao
    Lawmakers split on tax exemption for Pacquiao

    Colleagues of boxing champion Manny Pacquiao at the House of Representatives backed yesterday a proposal to exempt his earnings from his May 2 fight with American Floyd Mayweather from income tax. Internal Revenue Commissioner Kim Henares has urged Pacquiao to promptly pay taxes on his May 2 earnings, which are projected to reach at least $120 million (more than P5.2 billion). …

  • Woman with slain Putin critic says she didn't see his killer
    Woman with slain Putin critic says she didn't see his killer

    MOSCOW (AP) — The 23-year-old Ukrainian model who was with slain opposition leader Boris Nemtsov tearfully recounted Monday their last dinner in a chic Red Square restaurant and their walk onto a nearby bridge — but said she did not see the gunman who pulled the trigger. …


Should Aquino be held accountable over the Mamasapano operations?

Poll Choice Options