AV-TEST: Simple methods for creating strong passwords
Cybersecurity firm AV-TEST outlines straightforward approaches for generating and managing robust passwords to safeguard users from online threats.

German cybersecurity research firm AV-TEST has released guidance on creating and managing strong passwords. The report indicates that while most users remember their passwords, they often employ the same, weak credentials across multiple services.
One method AV-TEST suggests involves utilizing web browser features for password generation and storage for basic needs. For instance, the Chrome browser can automatically suggest and save passwords. While this streamlines user experience, the firm cautions that web browsers typically lack master password protection, rendering stored data vulnerable if a device falls into the wrong hands.
For managing more complex and numerous passwords, AV-TEST recommends password manager applications. These tools require only one strong master password to unlock all others. The firm provides an example of constructing a robust master password from a sentence, forming a cryptographically secure identifier. Such a password offers a high degree of security.
AV-TEST lists several popular password managers, including the open-source software KeePass, which necessitates user technical proficiency for managing the password file in cloud services. More commercial options include Norton Password Manager, F-Secure Key, and Kaspersky Password Manager, many of which are part of larger security suites.
The report also advises users to consider enabling two-factor authentication whenever possible and provides a link to a website detailing two-factor authentication options for various services.