Back in 1998, Scott Adams did a Dilbert strip that made many IT professionals cringe in sympathy.
As painful as this may seem, it’s one of the few times that Adams had underestimated where technology was going.
Ars Technica recently published an article entitled “Why passwords have never been weaker—and crackers have never been stronger.” I recommend it to anyone who has data on the internet that they want to keep secure. I’ve posted about passwords before, but this article explains why the urgency to use passwords that are uncrackable is even greater. It’s a technical read, but even if you don’t read it, you should be updating all your passwords.
“Newer hardware and modern techniques have also helped to contribute to the rise in password cracking. Now used increasingly for computing, graphics processors allow password-cracking programs to work thousands of times faster than they did just a decade ago on similarly priced PCs that used traditional CPUs alone. A PC running a single AMD Radeon HD7970 GPU, for instance, can try on average an astounding 8.2 billion password combinations each second, depending on the algorithm used to scramble them. Only a decade ago, such speeds were possible only when using pricey supercomputers.”
- Use a different password for each account. If one is compromised, the others remain secure.
- Use combinations of multiple words (Seven Whipped Aardvark Quonset) which would take 27 undecillion years for a desktop PC to crack.
- “It’s also important that a password not already be a part of the corpus of the hundreds of millions of codes already compiled in crackers’ word lists, that it be randomly generated by a computer, and that it have a minimum of nine characters to make brute-force cracks infeasible. Since it’s not uncommon for people to have dozens of accounts these days, the easiest way to put this advice into practice is to use program such as 1Password or PasswordSafe. Both apps allow users to create long, randomly generated passwords and to store them securely in a cryptographically protected file that’s unlocked with a single master password. Using a password manager to change passcodes regularly is also essential.”
The Old Wolf has spoken.