Weak passwords provide attackers with easy access to your computers and network,
while strong passwords are considerably harder to crack, even with the password-cracking
software that is available today. Password-cracking tools continue to improve, and
the computers that are used to crack passwords are more powerful than ever. The
automated method can crack any password. However, strong passwords are much harder
to crack than weak passwords. A secure computer has strong passwords for all user
A weak password:
- Not changed since last 90 days.
- Is no password at all.
- Contains your user name, real name, or company name.
- Contains a complete dictionary word. For example, Password is a weak password.
A strong password:
- Is at least five characters long and at max 20 characters long.
- Contains at least 1 number or special character.
- Does not contain your user name, real name, or company name.
- Does not contain a complete dictionary word.
- Is significantly different from previous passwords. Passwords that increment (Password1,
Password2, Password3 ...) are not strong.
An example of a strong password is obScur3!.