The UK’s national cybersecurity agency published a post advising the adoption of three-word passwords. These keys would be safer and easier to remember than passwords chosen by users to meet the complexity imposed by the sites.
The agency advises instead to choose a sequence of three random words, which would make the passwords much longer and difficult to predict, while being easy to remember. The problem with complex passwords imposed by sites is that it is impossible to remember a different series of random characters for each account. Most people use, such as taking a common word and replacing the letter “O” with a zero, and the “i” with an exclamation point.
NCSC recommends the use of a password manager
These are all strategies that hackers include in the algorithms they use to try to guess passwords starting with. The three-word technique is not foolproof and is not as secure as passwords made up of a random sequence of characters created with a . However, the agency advises a variety of techniques, which makes the job of hackers much more complex because they have to use a different algorithm for each type of password.
Ultimately, the best solution remains the. Those , still relatively little adopted, make it possible to generate and store completely random keys in a secure manner without having to memorize them.