All of us, at some point or other, have forgotten a password and needed a reminder. One study suggests the reason for this could be that we're each juggling a huge 100 passwords across various sites and services.
The study, commissioned by NordPass, found that the average number of passwords has actually increased in recent years, with the global pandemic potentially to blame, as more of us seek out new entertainment and services online.
The best way to manage this centum of passwords is with a password manager — here, we explain how.
The Rise of the Password
All of us have many passwords to manage on a daily basis. Across retail websites, email, social media and other services, we're all too familiar with the sheer wealth of login details that we have to juggle. The coterie of researchers at NordPass confirms what we've long suspected, although the huge number of passwords the average person is expected to remember — 100 — may still shock some.
According to the research, the number actually increased 25% between 2019 and 2020, when comparing with a similar poll which placed the average number of passwords at 70 to 80.
“We now partly understand why people use easy-to-guess passwords — they simply have too many to remember. So, it’s hardly surprising that people use either very simple passwords or have a few and reuse them for all accounts” -Nord Security Expert
One reason for this could be the global pandemic, which has forced many people to use more services online, generating new accounts in the process.
Respondents stated that they had downloaded more leisure and productivity apps this year, such as planners and calendars, as well as new work services, as necessitated by the move to working from home for many.
Local Storage Option | Two-Factor Authentication | Failsafe Function | Password Generator Function A password manager can create secure, complex passwords for you. You won't need to remember them yourself. | Help Instructions | Email Support | Live Chat Support | Phone Support | Price Overall cost per year for a single user. | Business Plan? | Business Price Cheapest available business plan | Click to Try | ||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
BEST ON TEST | |||||||||||||
LastPass | 1Password | Dashlane | NordPass | Sticky Password | |||||||||
| | | | | |||||||||
| | | | | |||||||||
| | | | | |||||||||
| | | | | |||||||||
| | | | | |||||||||
| | | | | |||||||||
| | | | | |||||||||
| | | | | |||||||||
$36 | $36 | $60 | $29.88 | $30 | |||||||||
| | | | | |||||||||
$3/user/month | $19.95/10 users | $60/user | $3.59/user/month | $29.99/user | |||||||||
What Makes a Good Password?
A good password, should, first and foremost, be an original one. It's all too easy to simply use the same password for multiple sites and services – after all, you're more likely to remember it, especially if you're managing the average 100 passwords. However, the obvious danger here is that if one of your accounts is comprised, then they all are. So, remember, create an original password for each service you use.
Another pitfall to be aware of is that many people use similar passwords. According to research, again by NordVPN, lots of us are using very obvious passwords, that are all too simple to crack. Think you're being smart by using a keyboard pattern instead of a word? You're not as genius as you may think.
The list put together by NordPass of the worst passwords of 2019 is shocking- if only because you might recognize some of your own on there! Examples, such as 123456, test1, iloveyou, football, qwerty and q1w2e3r4t5y6, could all be cracked in seconds. It's much better to actually put some time into your password creation and think of something that's genuinely unique, memorable, and robust.
How Many Passwords Should You Have?
Okay, so 100 passwords is too high. But you can't just use the same one everywhere. What's a number of passwords that the average person is still able to remember, but any risk of leaked information is mitigated?
Bad news: The one truly safe answer is to have a different password for each and every account. If you have 100 accounts, 100 passwords really is the safest move. And they should be longer than the typical cutoff, too: Nearly 30% of all passwords are eight characters, while almost 20% more are six characters long. But when it comes to uncrackable logins, you'll want 12 or more characters.
One tip that can help here is to pick out an entire phrase — “1twasthebestofpasswords,1twastheworstofpasswords” might take a while to type out, but it's far easier to remember than a similarly-sized length of random characters, and any supercomputer in the world would take weeks to brute-force it. But like we said, 12 or more characters should be plenty secure enough.
There's also the matter of how often to change your password. Again, the typical person doesn't have much of a protocol in place: Just 31.3% of internet users will create new passwords “once or twice a year,” according to the Digital Guardian, a data loss prevention software company. But the longer a password is in use, the more likely it has been leaked in a massive data breach — such as Collection 1-5, the name of a breach which exposed 2.2 billion unique emails and passwords back in January 2019. Yes, that's billion with a B.
On top of all that, the typical password suggestions apply: Don't use your own personal information in a password, like your name, birthday, or your pet's name, and try to avoid typical captializations like the first letter.
Read our guide on creating a secure password
How to Remember All Your Passwords
If you just keep all your passwords in your head, you're in the majority: 53% of people rely entirely on their own memory to keep track of passwords, a Ponemon Institute study shows.
The most common memorization strategy is the same one that NordPass warns against: Reusing passwords over and over. Perhaps unsurprisingly, that same Ponemon study found that a similar percentage (51%) of the population reuse the same passwords across work and personal accounts, further muddying the waters of online security. The younger generation isn't any more tech savvy than the rest, either, with a whopping 76% of those between the ages of 18 and 24 likely to reuse a password, the Digital Guardian finds.
Perhaps their worrying keeps those passwords in mind: One more study, from Avast, determined that nine out of ten people are afraid their passwords are vulnerable to attack, with 46% reportedly “very concerned” and another 44% keeping it down to just “a little concerned.”
There's only one good method for remembering the dozens and dozens of passwords an internet user needs to track these days, and it's the simple password management tool.
Should I Use a Password Manager?
Simply put, yes. It's something that we've always preached at Tech.co, but given this insight from Nord about the sheer volume of passwords that we're all struggling to manage, it seems more necessary now than ever.
The benefits of a password manager are numerous. The most obvious is that they keep all your passwords in one place, and can automatically fill them in for you, without you having to wrack your brain to remember what password you created for your ten-year-old social media account. However, that's just the tip of the iceberg.
Password managers can also create passwords for you, with the benefit being that they will be strong and secure – more so than if you had created them yourself. Not only that, but some services will actually monitor the web and alert you as soon as your details are compromised through a breach or hack, allowing you to change your password immediately, to mitigate any damage.
Best of all, password managers are not expensive. They amount to a few bucks a month, and for the peace of mind, that's great value. If you're looking to make your online experience more secure, whilst at the same time removing the stress of remembering 100 passwords from your life, check out our password manager recommendations.
FAQs
Tech.co is reader-supported. If you make a purchase through the links on our site, we may earn a commission from the retailers of the products we have reviewed. This helps Tech.co to provide free advice and reviews for our readers. It has no additional cost to you, and never affects the editorial independence of our reviews. Click to return to top of page