BSI revises the recommendation: why frequent password changes can be unsure

Risks of a regular password change

For a long time, the assumption that a frequent change from passwords increases protection against unauthorized access. However, according to the BSI, this practice often means that users use simple or repeating passwords that they are easier to remember. However, this significantly reduces actual security and can make access to sensitive data easier. Bitdefender confirms that many people tend to easily convert their passwords or use simple patterns, which makes them more predictable for cybercriminals.

Meaning of strong passwords

Instead of a frequent change, the BSI now recommends using strong and unique passwords. These should be at least twelve characters long and contain a combination of upper and lower case letters, numbers as well as special characters. Another option is to use a password manager that generates complex passwords and saves it safely. Well -secured and unique passwords represent one of the most effective measures against cyber attacks.

Increased security through two-factor authentication

In addition to secure passwords, the BSI advises activation of the two-factor authentication (2FA). This procedure complements the classic password with a second security component, such as a one-time code that is generated via SMS or via an authentication app. This additional protective layer makes access to accounts significantly difficult, even if the actual password gets into the wrong hands.

Passkeys as a future -proof alternative

Passkeys are also a modern and particularly safe alternative to conventional passwords. These enable registration via biometric data such as fingerprint or face recognition and are based on a cryptographic process that prevents phishing attacks. According to BSI, Passkeys offer greater security than conventional passwords because they cannot be stolen or passed on.

Editor finance.net