Guidance for choosing a password in Google+


Background

 

IT Security Policy, Principle 4 covers “User Accounts and Passwords”. The Password Policy Practice Statement details the WOW technical password attributes. The purpose of this Practice Statement is to provide users with practical advice on how to choose and maintain effective passwords.


Statement

 

Passwords are the first line of defense against breakins to your online accounts, computer, tablet, or phone. Poorly chosen passwords can render your information vulnerable to criminals, so it’s important to make your passwords strong.

Keys to password strength: length and complexity
 

To help you create strong passwords, follow these basic guidelines:

  • Strong passwords are phrases (or sentences) at least eight characters long but longer is better, that include at least three of the following: Uppercase and lowercase letters Numerals Punctuation marks, and Symbols.
  • Give passwords the thought they deserve, and make them memorable. One way is to base them on the title of a favorite song or book, or a familiar slogan or other phrase.
  • Don’t share passwords with others or store them on the device they’re designed to protect.
  • Don't use the same password for everything. Cybercriminals steal passwords on websites with very little security, and then they try to use that same password and user name in more secure environments, such as banking websites.
  • Change your passwords often. Set an automatic reminder for yourself to change your passwords on your email, banking, and credit card websites about every three months.
  • The greater the variety of characters in your password, the better. However, password hacking software automatically checks for common lettertosymbol conversions, such as changing "and" to "&" or "to" to "2".
  • Use the entire keyboard, not just the letters and characters you use or see most often.
Create a strong password that you can remember
 

There are many ways to create a long, complex password. Here are some suggestions that
might help you remember it easily:

  • Start with a sentence or two: eg. Complex passwords are safer.
  • Remove the spaces between the words in the sentence: eg. Complexpasswordsaresafer.
  • Turn words into shorthand or intentionally misspell a word, add symbols and upper case letters: eg. Complexpasswordsaresafer.
  • Remove the spaces between the words in the sentence: eg. Compl3ksp@ssw0rdsRsafer.
  • Add length with numbers. Put numbers that are meaningful to you after the sentence: eg. Compl3ksp@ssw0rdsRsafer2011
Avoid common password pitfalls
 

Cybercriminals use sophisticated tools to rapidly crack passwords, but you can help foil their
attempts.

Do not use:

Personal identity information that could be guessed or easily discovered, like pet names,
nicknames, birth date, address, or driver's license number.

Do not rely on (but can include as a part of a more complex phrase or password):

Just dictionary words in any language (including the word password—the most common password in the English language!).

Words spelled backwards, abbreviations, and common misspellings (accommodate, remember).

Common lettertosymbol conversions, such as changing "o" to "0" or "i" to "1" or “!”.

Sequences or repeated characters. Examples: 12345678, 222222, abcdefg, or adjacent letters on your keyboard (such as qwerty or zaq12wsx).

 

Click here to return to the People Portal login page.