Recent website security scares have brought home the importance of a sensible approach to passwords, at both the personal and corporate levels. Tony Hallett reports on what the industry is saying - and whether passwords are enough.
Tricky things, passwords. They are our most common way of safeguarding digitally stored information over shared media but they are fraught with contradictions. Most obviously, the safer they look - in terms of length and mix of characters - the harder they often are to remember, making them dangerous when end users write them down. Meanwhile employers are increasingly being told passwords - meant to make things safer - are not just frequently insecure but costly to support and legally contentious.
In general, besides changing them regularly, tips include:
- Never use words that can be found in a dictionary - even in combinations - or common proper nouns.
- Make them at least eight characters long and substitute numbers for letters in some cases, for example a 5 for an S.
- Never use passwords across different systems or websites.
- Don't assume someone else won't know you and be able to guess the name of your next door neighbour's cat, for example.
http://www.silicon.com/software/security/0,39024655,39117138,00.htm

Chowhound
Comic Vine
GameFAQs
GameSpot
Giant Bomb
TechRepublic