I have over 100 different passwords, but I don't have any problem remembering them. I don't write them down or use any sort of password manager. I came up with a system that enables me to remember my passwords. It works for me, so I'm sharing the technique in case anyone else thinks it might be helpful.
With my system, you only have to remember two things.
- A core password.
- Your scheme.
First, come up with a strong core password of about 8 or 9 characters. This core piece should be random gibberish and needs to have a lowercase letter, an uppercase letter, a number, and a special character. An example is kM92ax4!. Whatever you decide upon, memorize it.
Second, pick a scheme based on the website's domain name. The scheme is used to supplement your core password. As a simple example, your scheme could use the last 3 characters of the site's domain, add one letter to each (this is actually an encryption technique called "ROT1"), and append this to your core password.
So for the site "www.verizonwireless.com", we see the last 3 characters of the domain are "ess". Therefore the 3 additional characters would be "ftt" and your final password is kM92ax4!ftt.
For sprint.com, your final password is kM92ax4!jou.
For att.com, your final password is kM92ax4!buu.
Come up with a any scheme you want as long as it's based on the website domain. Here are some other possibilities:
- Prepend the first character to your core password/append the last two
- Capitalize one or two of the letters
- Subtract two letters ("ROT24" encryption) instead of adding one
- Look at the first two chars + last char of the domain, instead of the last three
My system isn't perfect. It doesn't work on sites that have a short maximum password length (like 10) or onerous password requirements (like requiring you to change it every 90 days). But overall it has worked great for me.
