A password is often the only obstacle to unauthorised use of a data system. When you create a password, make sure you follow these guidelines:
- The password must not be a real word, not even one from a foreign language.
- It must not be a car registration number, a date of birth, the name of a pet or anything else that can be easily deduced.
- A password should be in the form a code.
- It should include a mixture of numerical digits, letters and special characters.
- However, the Scandinavian letters ä, ö and å must not be used in the password.
Make sure you don’t write the password on a piece of paper and hide it under the keyboard. The best place to keep a password is in your head. Don’t store the password on a computer or in any separate text file. Also, don’t save the password even if a program gives you the option. Otherwise, it becomes easy for malware to snoop and obtain your password.
Systematic hacking methods and programs have been developed for determining passwords. For this reason, you should change your password on a regular basis.
You must not disclose your password to anyone else either. The transfer of a JAMK (Jyväskylä University of Applied Sciences) data-system username/password pair to another person is a violation of the user regulations.
Creating a password by using a mnemonic
You can create a good password when you take a phrase and pick one letter from each word in it. Then, you could even add a number to the end, which perhaps relates to the phrase. In this way, you will have a good way of remembering the password, and you won’t even need to write the password down on paper. It is of course worth checking the end result to make sure that you haven’t created a word by accident or even your own name.
From the sentence “There was once one evil, little witch by the name of Känkkäränkkä” you could create the password “Two1elwbtnoK”.
A good, secure password:
- is at least 8 characters long
- includes letters (A-Z) and numerical digits (0-9)
- may also include special characters, and upper- and lower-case letters
- is not easy to guess
- does not include the user’s first name(s) or surname or even elements of these
- does not include any words from the Finnish or English languages
- does not include any part of the username
The most common example of a bad password is the user’s first name followed by the number 1 or 2. It isn’t very difficult to guess, and a program that hackers use to crack passwords will guess the password easily.