30 principles of a good/secure password and a secure Handling of Passwords
We have written some good security principles related to passwords, these recommendations and principles are good, maybe a bit extreme and not every principle should be followed. But it is good to use a lot of them for your peace of mind and security.
It is very important to understand that your most important passwords should be kept only in your mind, nowhere else. Follow these principles to protect your privacy and prevent unauthorized access to your accounts.
1.Password length
Use a password of at least 10-16 characters. The longer the password, the harder it is to guess or crack, have a password system or use a generator.
2.Combination of symbols
Create a password that contains upper and lower case letters, numbers and special characters (for example: [], @, #, !, %). This makes the password significantly stronger and harder to hack.
3.Avoid obvious words and personal information
Don't use easy-to-guess words like "password12345", "cat", "car", "superman" names, birth dates, phone numbers or other personal details.
4.Use unique passwords for each service and account
Always create a different password for each account. That way, if one password is compromised, your other accounts will remain protected.
5.Change passwords periodically
Update your passwords regularly, especially for important accounts (e.g. bank, email, social media). It is recommended to change your password every 3-6 months.
6.Use long phrases instead of random words
Passwords like "I'mGotin1020!" are easy to remember but tricky to crack. Combine words and symbols to create a phrase that has no connection to you.
7.Avoid repeating symbols and sequences
Don't use things like "aaaaaa" or "123456", which are among the most easily guessed combinations in the world of passwords.
8.Be careful with keyboard models
Passwords such as "qwerty", "asdfgh" or other keyboard sequences are predictable and vulnerable.
9.Avoid popular passwords
Never use common passwords such as "123456", "password", "admin", "baby12345". Hackers first check databases with such passwords.
10.Enable two-factor authentication (2FA)
Even if you have a strong password, two-factor authentication adds another layer of protection that requires a second code or app confirmation.
11.Use randomness, like our generator
Generate passwords with random characters and numbers instead of using logical patterns. Example: "G_/mIC53qh".
12.Don't write down your password in unprotected places
Avoid writing down your password on paper, in text files on your computer, or in apps that aren't encrypted.
13.Avoid sharing your password
Never share your passwords with other people, even colleagues or family. If necessary, use temporary access methods.
14.Use passwords that are difficult to social engineer
Don't choose passwords related to obvious interests or public information about you, like the name of your pet or favourite sports team.
15.Check if your password has been compromised
Use tools like "Have I Been Pwned" (or similar) to check if your password has been leaked to public databases.
16.Avoid easy character substitutes
Replacing letters with similar numbers or symbols, such as "P@ssw0rd", is no longer secure enough because hackers use techniques to recognize these patterns.
17.Use "pseudo-language" or made-up words
Include non-existent words or routines that have no meaning in any language, such as "Gribl0ck#Za!". This makes the password hard to guess.
18.Include special characters in unexpected places
Instead of putting them at the beginning or end, put characters in the middle of the password, for example "Tig&erL!ily5".
19.Don't use autofill for important accounts
Disable password autofill in browsers for sensitive platforms such as bank accounts.
20.Create passwords that can be easily checked for strength
Use password strength assessment tools (e.g. built-in password managers) to see if it's strong enough.
21.Avoid public Wi-Fi
Don't use public Wi-Fi, cafes, pubs or similar, they've probably been hacked and are recording your every password.
22.Use a combination of different languages
Include words or symbols from different languages, for example "avocat!5614Katze". This adds complexity that makes it harder to parse.
23.Don't just rely on keyboard complexity
For example, passwords such as "@[]=#$%^&*" may seem complex, but are easy to crack because they are a standard keyboard sequence.
24.Do not use passwords related to current events
For example, avoid passwords like "WorldCup2024" or "ufc2025" because they are commonly used in this period.
25.Avoid passwords based on popular quotes
For example, phrases like "ToBeOrNot2Be!" are predictable and present in hackers' databases.
26.Create backup questions with non-standard answers
For the security of a forgotten password, use questions with custom answers that don't involve real data.
Question: "Favorite fruit?"
Answer: "Elephant1029!"
27.Makes your password contextually illogical
Use completely unrelated elements, like "Apple!Moon+Carandcat20#". This makes it almost impossible to crack via algorithms.
28.Makes your password contextually illogical
Use completely unrelated elements, like "Apple!Moon+Carandcat20#". This makes it almost impossible to crack via algorithms.
29.Use personal encodings
Create your own code, for example replace certain letters with numbers or symbols only you know: "H3!4L7o@L", where "Hello" is encoded according to your logic.
30.Not saving passwords in your browser
Don't save passwords in your browser because they could be hijacked by a browser add-on, or someone could download any password you have if they get their hands on your device.
Important for these secure password rules
These rules are widely accepted around the world for generating a secure password, you may or may not follow them, but any of the rules listed above will save you from sleepless nights and problems as well as a lot of nerves if someone takes your password, don't underestimate the seriousness of the problem.
Always be on the lookout for any attempted or bad password generation, avoid public wi-fi, generate strong and different passwords, have your own system. Or use our password generator which will easily help you in generating and also it follows every necessary and important standard for password generation.
