By, Joe Purcell
Perhaps the most overlooked feature of security is the password. Let's consider an analogy: your information, whether it be your home computer or Facebook, is like treasure. Only you have access to that treasure because it's protected by a password, a secret. The only way someone can steal your treasure is if they know how to get to it, that is, if they know your secret password.
Let's say for example, you have money hidden under your matress. Anyone wanting to steal from you would easily guess to look there. In the same way, hackers would easily guess "123456" for your password. Which, by the way, was the password of almost 300,000 users at RockYou in 2009, according to a report by Imperva. Choosing a strong password isn't easy, but surely one could come up with a better password than that!
1.Length - the more characters the better; with each additional character (if you are considering uppercase, lowercase, numerals, and special characters) the complexity of cracking the password goes up by a multiple of 94, so 2 characters has 8,836 possibilities, but 3 has 830,584!
4.Duration - the longer your password stays the same, the more chances a hacker has at attempting to crack it; duration of 3 months is ideal
2.Extract characters from the sentence - The simplest is to choose the first letter of each word, maybe convert number words to numbers and words like "at" and "and" to @ and &, so mine is: "Typlyt.Dlaui&gan1e6m."
3.Add complexity - Microsoft suggests making the letters in the first half of it upper case, but a great alternative is to use l33t speak, so make T's into 7's, a's into @'s, and such, here's a complete list of l33t conversions. This can also be done in the process of step 2 as I did, so since mine is already complex--it has uppercase, lowercase, numbers, and special characters--I can skip this step.