There’s a new way to make strong passwords, and it’s way easier
Washington Post:
Now, a new standard is emerging for passwords, backed by a growing number of businesses and government agencies — to the relief of computer users everywhere. No longer must passwords be changed so often, or include an incomprehensible string of special characters. The new direction is one that champions less complexity in favor of length.
…
Joe Hall, chief technologist at think tank Center for Democracy and Technology, has noticed easier password rules among the 800 different logins he uses. (He admits he’s an outlier having so many accounts. But, he says, that’s part of his job.) In recent years, he has seen more sites allowing 16 character if not longer passwords. Fewer are requiring regular resets.
“This is part of a big push to make things more usable for humans,” Hall said.
Like many computer experts, Hall has been a fan of passphrases for years.
“I tell people to think of a sentence that is shocking and unpredictable, even nonsensical,” he said.
