Dustin Decker

Replacing Passwords with Passphrases

Replacing passwords with passphrases is a good way to increase the security of your accounts, as passphrases are longer and more complex than typical passwords. Here are some steps to follow:

  1. Choose a long phrase: A passphrase is a sequence of words that you can remember easily. You can choose a phrase that has meaning to you, but it should be at least 12 characters long. Longer phrases are even better.
  2. Mix it up: You should include uppercase and lowercase letters, numbers, and symbols to make your passphrase even stronger. For example, instead of using “The quick brown fox jumps over the lazy dog,” you can use “Th3qu!ckBr0wnF0xJump$0v3rTh3L@zyD0g”.
  3. Use different passphrases for different accounts: You should use a different passphrase for each of your accounts. This way, if one of your accounts is compromised, your other accounts will still be safe.
  4. Don’t use common phrases: You should avoid using common phrases that are easy to guess or are widely used. For example, “IloveYou” or “password” are not good passphrases.
  5. Keep your passphrase secret: You should never share your passphrase with anyone, and you should avoid writing it down. If you need to write it down, keep it in a secure place, like a safe or a password manager.

By following these steps, you can create strong and secure passphrases to protect your accounts. Remember, it’s important to choose passphrases that are easy to remember but hard to guess.

Dustin Decker

Hello World! My name is Dustin Decker, and I am a full-time security researcher and student with over twenty years of experience as an information systems engineer. I am currently beginning my senior year pursuing my second bachelor’s degree in applied Cybersecurity (BACS) with the SANS Technology Institute. I anticipate graduating in May of 2024. I am a skilled Information Security Analyst with expertise in risk management framework (RMF), systems development life cycle (SDLC), security life cycle, management of a wide range of vulnerabilities and threats, fundamental business analysis, and project management. Skills: Microsoft Azure FedRAMP, Puppet, Artifactory, Django, Riverbed Steelscript, Riverbed SteelCentral NetShark, Vagrant, Chocolatey, MuleSoft, PostgreSQL, JavaScript, BASH Scripting, PowerShell, RHEL, DevOps, Docker, Visual Studio, BeEf, Bucket Finder, TLS-Scan, CeWL, JQ, Masscan, Metasploit/Meterpreter, Zenmap, Nmap, Mimikatz, SpiderFoot, Unshadow + John, Volatility, and personal new favorite: SRUM-Dump. I specialize in providing IT security expertise and guidance in support of security assessments and continuous monitoring for government (FISMA & NIST) and commercial clients. I am comfortable in heterogenous environments with tens of thousands of hosts.

,
, ,