# Three (Almost) Foolproof Ways to Make a Secure Password

On LockerGnome we’ve got many articles about passwords ranging from how to make your life easier by remembering them to how ludicrous it will become for passwords to remain secure — if it hasn’t already gotten that far. Today I wanted to share a few tips that may help you make and remember your passwords. I’ll also point out that I have well over 20 different passwords that I remember and use on a day-to-day basis to show that I don’t just “talk the talk.”

I’ve found this technique to be quite useful, but it can be a little bit of a drawn-out process.

• Find a phrase that you know well. I’ll use: “You can take a horse to water, but you can’t take him to a disco.” — Eddie Izzard
• Take the first letter from each word. So, for this example, YCTAHTWBYCTHTAD.
• Vary the case of the letters from UPPERCASE to lowercase. The example now changes to yCTahTWbYcThTAd.
• Change some letters to numbers. In our example, T=1 and C=6 to become y61ahTWbYc1hTAd.
• Add in some special characters like @,.#. Our example now looks like this: [email protected].

The reason these kinds of passwords are great — albeit easily forgettable — is that they are long. I believe the optimal length of a password to be around the 12-13 alphanumeric mark. I may be wrong in this aspect, however, all of my passwords are built to this sort of standard.

## The Stuff Around You Password

I don’t personally use this technique, but you might find it to be a secure way of password building.

• Pick two items from around your room. In my case, a glass and an open window.
• Think of two seperate sets of two numbers. I’ll go for 23 and 98.
• Place these two numbers before, during, or after the words. In this example, I’ll go for 23glass98window.
• Add in a special character or two. The example now looks like this: [email protected].

As I mentioned above, I don’t personally use this method, but I can see why people do use it. It’s simpler and a lot easier to remember this kind of password than it is to remember the letters for which you’ve changed case, which letters you’ve changed into numbers, and where you’ve placed the special characters and character replacements.

This technique is one from back in the day when I was just new to the whole Internet phenomenon — so that’s about a decade ago.

• Pick two words. I’ll use headset and mouse.
• Mix them together. We now get hmeoaudsseet.
• Add in a special character and a number or two. The example now looks like this: hme#89oaud.sseet.

I am not sure how I feel about this technique because it is just so old, but it should still be secure. My only problem with it is that you may forget — as I have — which word comes first. I think it’s all a case of what works for you — better is relative, and all that jazz.

As I mentioned above, I’ve been online for a decade now and, damn, I feel old. I have used many different techniques and thought that it may be a good idea to share three of my techniques with you, the LockerGnome audience. I can never truly take the high ground over making highly secure passwords because even I have used some really stupidly easy ones — granted, they were for testing purposes, but it’s still no excuse in my book. I also know there are still hundreds of thousands of people out there who have passwords like QWERTY and ABC123. I hope that they see and use one of the three methods above to create a password that is even slightly more secure.

I both love and hate the idea of storing all of my passwords in one single place and letting the program or code insert and take care of that side of it for me. I love it because I’d only have to use a singular, secure password. I hate it because there is always that chance that the website, program, database, or whatever is compromised and then I have to run around all of the websites I use to change all of my passwords. It may even be that I couldn’t get to the website in time before someone locked me out of my own account, and the, there’s the long, drawn-out battle to get that website or those websites to check their logs and verify that I am who I say I am. Passwords are what make the world go round, in my opinion. What do you think?