Think up secure passwords – new IT security project available!

M.Sc. Chris Wojzechowski

Think up secure passwords – new IT security project available!

For each new account, the user must come up with secure passwords. No easy task – after all, every password has to be memorized and, in the worst case scenario for the user, changed regularly. In the early days of the Internet, the problem was still manageable – but now every Internet user has about 100 accounts in his or her life – it is hardly possible to remember passwords securely.

Passwort-ausdenken.de creates personal kryptonizer!

A kryptonizer is an encryption card that can be used to transform simple words into complex passwords. Only someone who has the card and the “simple word” can derive the password. Whoever visits the website will be presented with an individual kryptonizer. On passwort-ausdenken.de anyone can have such a card generated. Don’t like the letters and numbers? As soon as the website is reloaded, a new kryptonizer is created. If you want to participate directly, you can do that too. Under “extended card” everybody can create his personal kryptonizer and print it out afterwards. On the printout the kryptonizer is shown 2x. One version is for the wallet – the other one is a backup card in case the wallet gets lost.

This is how password-thinking.com is used!

If the kryptonizer is printed or saved, anyone can think up secure passwords. The only thing left to do now is to remember and think up words. If you use the kryptonizer e.g. with the word “Facebook” the password is: 5oW#37737mm%

With passwort-ausdenken.de anyone can create a personal kryptonizer.
With passwort-ausdenken.de anyone can create a personal kryptonizer.

Each expression has a start sequence. In this sequence the requirements for a complex password are fulfilled. There is an upper and lower case letter as well as a special character and a number. For the next time you need one word. If you take “Bolognese”, every letter is now replaced by another one on the card. The B becomes a 7, the O becomes an m, the L becomes a % and so on. Finally, with the word Bolognese you get the password “5oW#7m%mm3D3”.

Possession and knowledge necessary to derive password!

In a sense, this is a softened two-factor authentication on the user side. After all, it is necessary to know something and own something. In theory, it is of course sufficient to guess the password. But with Facebook or Bolognese this is easier than with “5oW#7m%mm3D3”.

We wish you a lot of fun while thinking up the words and creating the passwords!

Photo of author

M.Sc. Chris Wojzechowski

My name is Chris Wojzechowski and I studied my Master in Internet Security in Gelsenkirchen a few years ago. I am one of two managing directors of AWARE7 GmbH and a trained IT Risk Manager, IT-Grundschutz practitioner (TÜV) and possess the test procedure competence for § 8a BSIG. Our bread and butter business is performing penetration testing. We are also committed to promoting a broad understanding of IT security in Europe, which is why we offer the majority of our products free of charge.