Length matters most
Longer passwords are generally harder to guess than short complicated ones. A password with enough length gives more room for randomness.
For important accounts, avoid names, birthdays, repeated patterns, and common phrases.
Use a mix of characters when allowed
Many systems allow uppercase letters, lowercase letters, numbers, and symbols. Using a mixture can improve strength when the password is random.
Some websites have limits or block certain symbols, so generate a password that matches the rules of the site where it will be used.
- Prefer at least 16 characters
- Avoid reused passwords
- Store passwords in a password manager
Do not reuse passwords
Reusing one password across many sites is risky. If one account leaks, attackers may try the same password elsewhere.
Generate a different password for each important account and save it somewhere secure.