Security Recomendations for UserNames, SecurityQuestions, Passwords
Recommendations from the security department of a utility company as a member of the CNI system (Critical National Infrastructure)
UserNames/email addresses:
Non personal/individual identifying name whenever possible
use business names for a business, not your personal name
have a throw away email account on gmail. . . send grocery store emails there
throw away is not linked to any financial account. . .
Security Questions:
use long general descriptive names or type easy to remember wrong answers
Where did you meet your spouse?
onvacationinabar
What was your first pet's name?
hotdogLarry (dachsund named Larry)
Passwords:
Use maximium length, use an easy to remember phrase or sentence
Use specialcharacters as spaces or word separators
use capitals in the middle/end of the word
use a different password for each financial site and never reuse those anywhere else
thE!quicK!browN!fOx!jumPed!
use a throw away password on non sensitive web sites
easy to remember and throw some numbers and 1 special character in
never save financial passwords on your cell phone or laptop
|