Password

A password is a word or string of characters used for user authentication to prove identity or access approval to gain access to a resource, which should be kept secret from those not allowed access.

Credentials

The term credentials is sometimes used to designate a set of information, such as username and password, which give access to a particular resource.

See Credential.

Assets

Passwords, credentials, and related information are assets; see also Asset management.

History

The use of passwords is known to be ancient. Sentries would challenge those wishing to enter an area or approaching it to supply a password or watchword, and would only allow a person or group to pass if they knew the password.

Modern

In modern times, user names and passwords are commonly used by people during a log in process that controls access to protected computer operating systems, mobile phones, cable TV decoders, automated teller machines (ATMs), etc.

Typical computer user

A typical computer user has passwords for many purposes:

• Logging into online accounts, accessing resources such as:
  • Email
  • E-commerce
  • Online banking
  • File Transfer Protocol
  • Databases
  • Computer networks
  • Websites
  • Applications
  • Etc.

Nomenclature

Despite the name, there is no need for passwords to be actual words; indeed passwords which are not actual words may be harder to guess, a desirable property.

Some passwords are formed from multiple words and may more accurately be called a passphrase.

The terms passcode and passkey are sometimes used when the secret information is purely numeric, such as the personal identification number (PIN) commonly used for ATM access.

Passwords are generally short enough to be easily memorized and typed.

Policy

Most organizations specify a password policy that sets requirements for the composition and usage of passwords, typically dictating:

• Minimum length
• Required categories (e.g. upper and lower case, numbers, and special characters)
• Prohibited elements (e.g. own name, date of birth, address, telephone number)

Some governments have national authentication frameworks that define requirements for user authentication to government services, including requirements for passwords.

See also

• Asset
• Asset management
• Computer security
• Credential
• Cryptography
• Exploit (computer security)
• Information system
• Internet security
• Security
• User (computing)
• User authentication

External links

• Password @ Wikipedia