World Password Day 2016: How Do You Manage Your Passwords?

Posted on by Jennifer Lawinski

I recently signed up for the TSA Global Entry Pre-Check program, because as I'm going to be traveling for RSA Conference, I'll be spending quality time at JFK for more than just vacations.

Why is this information I'm sharing with you on World Password Day 2016?

Just two days after I created my account on the government's site, I was notified via email that there was a change in my application status and I could log-in and review it. Great! That was fast! I put in my user name, and then… Wait. I had just created this password TWO DAYS ago. Was this one that had to have capital letters or not? Or did it have a special character?

I tried a few things I thought it could be, but came up with nothing. I had to click the "Forgot Password" link, and I guarantee that won't be the last time if I'm left to my brain to make sure that all of my passwords for every site I use are both robust and unique.

It's time for a password manager. 

I'm not the only person who has this problem. In fact, I bet every one of you reading this at some point or another has had to click the "Forgot Password" link on a website you could swear you remembered your password for—until you didn't. 

What makes for a good password? Any security professional knows they should be "long and strong" with a mix of upper and lower case letters, numbers and special characters. Turning a phrase into a password can help with remembering. And please, don't use your pet's name. Or any other single word, for that matter. And change them frequently.

(Oh yeah, and there is danger in sharing that Netflix or HBO Go password. Try to resist the urge to just let that be since so many of your nearest and dearest are pirating your $9.99 service.) 

Better still, enable two-factor authentication. 

How do you keep track of all of your passwords? 

Jennifer Lawinski

Director of Social Media & Community, Arculus


security awareness identity management & governance password management

Blogs posted to the website are intended for educational purposes only and do not replace independent professional judgment. Statements of fact and opinions expressed are those of the blog author individually and, unless expressly stated to the contrary, are not the opinion or position of RSA Conference™, or any other co-sponsors. RSA Conference does not endorse or approve, and assumes no responsibility for, the content, accuracy or completeness of the information presented in this blog.

Share With Your Community

Related Blogs