I recently read an article online that discussed using a 12 letter password instead of a 6 to 8 word password. Researchers found that the 6-8 letter passwords can easily be decoded in 2 hours using graphic cards. The article did say that graphic cards were cheap and becoming faster.
What I found interesting besides it taking graphic cards only two hours to figure a 6-8 word password but how long it would take for a smart hacker to figure out a 12 letter password. I read that it would take 17,134 years where as an eleven letter password would take 180 years to figure out. What a difference for just one letter.
Carnegie Mellon University is suggesting making a password phrase or sentence. Which is probably a good idea that I wish I had thought of doing. A Microsoft webite also suggested to make up non-words to prevent "dictionary attacks." Also, another great idea.
This was a good article to read, always learning something new. :thumbsup2:
The only password security I worry about is one my wireless router. ATM WPA/WPA2 are nigh impossible to crack by conventional means. They require dictionary attacks that must include the password somewhere in the dictionary. So uncommon words and mixes of words and letters make it very unlikely the password exists anywhere.
If you think about 6-8 vs. 12 character passwords in the longrun, it may take an extra few seconds to type in the guessed password which adds up over several thousand years, lol.
I think the main difference is that there are many more 6-8 character words then 12. So it eliminates the idea that its a single word, so the system or hacker has to think of a almost limitless combination of words and numbers to guess at.
So a sentence long password with some letters replaced with numbers is probably one of the strongest types of personal passwords.
Don't forget lower and upper case letters. Many password indicators recognizes password difficulty as Medium for not including different letter case.
My password is 27 letters long with capital, normal and numbers, even i cant get into my account.. Luckyily we have forgot password function.