Network administrators and security experts recommend changing passwords periodically. However, in some situations, it can be detrimental to safety. One of the problems generated by changing most of the passwords we use with some assiduity is that in the end, we tend to use weaker passwords so that they are easier to remember each time we change them. If we use a password for a long time, we can always put a more complex one that is more difficult to crack, although logically the ideal would be to use complex passwords that are changed periodically.
Changing passwords with certain periodicity is a waste of time, and if it is not done well, we deteriorate security. In case you don't know, a strong password or password must contain the following elements:
- Capital letters.
- Lowercase.
- Numbers.
- Symbols such as @, &, or $.
- The recommended length would be a minimum of 12 characters.
Positive Aspects of Changing Passwords Periodically
Changing passwords periodically is a good idea because it makes it difficult for someone to obtain our password by brute force or dictionary, since, before it can be cracked, we will have already changed it and you will not be able to do anything to enter with our credentials.
A periodic password change means that in the event that they steal our email password or any other service, they could never log into their account and have access to our data because during the time it takes to crack the password, we already we will have changed it. The same could happen with social media accounts and bank accounts.
We must bear in mind that the less time between password changes, the probability that a cybercriminal will crack the password is lower since they will have less time to discover our password and use it for their own benefit.
Drawbacks of Changing Passwords Regularly
Password changes are something that we should take seriously, however, that does not mean that changing passwords is an additional effort for people quite important. The problem is that people have limited time and memory, which means that changing passwords periodically involves a significant effort, especially the latter, remembering the last password.
In an ideal world where we had a perfect memory and time to design our password, there would be no problems. One of the most important security problems is human error, and if you change your password often, you will be more likely to use weak passwords to make them easier to remember. Therefore, if we are forced to change it periodically, it will be more difficult to remember and create good passwords. For this reason, it is not surprising that users who are forced to change them end up adding a number to their password, such as "password1" and then "password2".
Another issue to keep in mind is that the problem is compounded by making so many changes. The reason is none other than that we have to handle many passwords. In that sense, to alleviate the problem we recommend using a password manager such as KeePass, Password, or any other.
The problem that we acquire when changing passwords periodically is that we will end up using the weakest ones, and probably, we will reuse the same key in different accounts, so we will be even more vulnerable for reusing the passwords in different services. In this regard, it is much more important to use strong and unique passwords everywhere than to change the password regularly.
This is How Cybercriminals Act When They Obtain a Key
By periodically changing passwords, if done right, you improve security, but the problem is, if done wrong, you can make security worse.
Another important issue is when our password falls into the wrong hands. In that case, cybercriminals try to take advantage of it as soon as possible. For example, if in a phishing attack they obtain the password from your email, they will try to make the most of it and will try to reset the passwords of other accounts with it. Thus, for example, they could gain access to your Facebook account to send spam or scam your acquaintances.
In summary, even if you had changed your password the day before, being victims of a phishing attack where you enter your current password, this measure will be of little use. Therefore, for certain types of attacks, the change is not so beneficial.
When Should We Change Passwords?
In the event that we have had to share, out of necessity, the key of an account of any type such as Netflix or Amazon Prime, the change may be beneficial, immediately or when the agreed time for using an account expires. streaming is convenient to change it. In this way, we avoid spying on our data, or services that are ours from being used without permission.
It should also be noted that password changes can be positive for some jobs. In this sense, IT administrators should not force workers to change passwords unless there is a good reason. In this case, it is best to use a password manager to avoid using an increasingly weak password. Therefore, do not forget that regular and indiscriminate password changes can in the long run be a problem.
As we have seen, periodically changing passwords is not always good advice. In addition, in case our password is stolen, if we have activated two-factor authentication from Google, Facebook, etc. they will not be able to access our account. Therefore, for accounts that support this two-step verification, it can be very beneficial for our security to have it activated.
But using a strong password is not enough to protect data. The best antivirus software will be a good choice to secure your data from external threatening.
No comments:
Post a Comment