 So one of the major issues that we always run into with security is this idea of convenience as I continue to add Security kind of features I run it to the issue of you know How convenient it is think about the TSA now that we've added that in you know security the convenience of Going and taking a flight is a little lower and some people get in a little annoyed with it So that's where that comes into play the same thing actually happens when we talk about passwords If you think about it keep your community college. We make you change your password every 90 days It's really annoying, but it's to increase security and the reason is we don't want someone to be able to guess your password There's actually this thing known as a brute force attack where they try every possible combination Well, guess what if we make you change it every 90 days It makes it a little harder for that brute force attack to happen Well, we also have to think about passwords in the regard of making sure that they're not bad passwords For example, how many of you guys are a violator of one of these? You know, I know maybe you're not doing it 100% like that But how many of you guys, you know use that somewhere in another website? That's a big deal because if we think about the target X Story, I told you guys a second ago. They were using default passwords now Default means that everyone knows what it is The problem is obviously some people change it and they don't change it very well These are actually Back when twitter got hacked way back in the day These were some of the ones that were released and You know malicious hackers will use them break into accounts and whatnot But mathematicians and statisticians will actually look at these as well And this is actually what they were able to point out is these are some of the most Commonly used passwords that have been released to the internet So for example, how many of you guys For your cake for your community college account use an uppercase for the first character in your password I know i'm a violator of that But guess what that makes it a little easier to guess how many of you guys have a number at the very end Again makes me very easy to guess and we continue to look at that until we get into this idea of It's known as intro b. It's a big scientific word, but I'm able to take something very complex like your password and break it down into those common traits that people do So suddenly that capital letter. Well, that just reduced how many possible characters it could be Same kind of thing if you have a number at the very end of it I can guess it again I can know that there's only 10 possible characters that you're going to have at the very end of your password So one of the options you can do is instead of trying to make these things super complex like changing your o to a zero Which hackers know that you will do Introduce something like spaces. Uh, this is a nice little xkd kcd comic But what it does is it looks at something like trabodar ampersand 3 Over complex is the idea of a password Well, what about spaces? Something like correct horse battery staple It seems very easy to do. In fact I'm gonna actually do something. I'm gonna I'm gonna Do something crazy. I'm gonna give you my password. Well, not to keep for your community college But I'm gonna give you the password to my wi-fi router Let's take a look at that men in tight tight tights. It's a throwback to my favorite movie. Mel Brooks is robin hood men in tights It's a wonderful comedy if you have not taken a look at it Get off your lazy keysters and go find it via the red box or the Netflix or even your local library. It should be there But let's take a look at this. Well, this is 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 20 20 30 The water actually six 27 Possible characters including spaces. That's actually really powerful and it's a very easy to remember password I know what it is at all times That actually becomes a very important thing because when we're trying to make a good password It really actually matters about length How long your password is versus how complex it is if it's long That makes it go up exponentially. How more complicated it is some other recommendations are avoid using sequences like 1 2 3 or x y z and Avoid dictionary words the reason why is because well, guess what? The same reason that these are very common is because rocky princess princess. That's a very easy to guess word Hackers aren't going to use something like a brute force processor Uh brute force attack because it just takes too long statistically. It takes too long What they're going to do is they're going to go through what they call a dictionary attack And that dictionary attack is going to look at all the common words that You know are in a dictionary and guess what they might be able to guess it So is yours a very common word and you're like, oh no I have a number at the end of mine Guess what easily guessable. So we have to be a little careful with these kind of things