Skip to main content

Need a strong password? Write a poem

have i been pwned owner uncovers 13 million plaintext passwords leaked from free webhost is a safe password even possible we
guteksk7/Shutterstock
If Shakespeare were still alive, it’d be impossible to crack his passwords. It’s time for pull out your inner Byron, folks, because as it turns out, the perfect password is a poem. According to new research from Marjan Ghazvininejad and Kevin Knight of the University of Southern California, the most secure of strings when it comes to protecting your sensitive information are derived from none other than little rhymes comprised of four random words.

Inspired by none other than a comic strip, the two researchers detail the secrets of the ideal password in their recent paper. “Our methods are inspired by an XKCD cartoon that proposes to convert a randomly-chosen 44-bit password into a short, nonsensical sequence of English words,” the team writes. “The proposed system divides the 44-bit password into four 11-bit chunks, and each chunk provides an index into a 2,048-word English dictionary.”

Noting that the most secure of passwords (like 0010100010100 … 00101001) are often hard to memorize, the duo attempted to “convert such strings into English phrases, in order to improve their memorability, using natural language processing to select fluent passphrases.” And the most memorable of phrases just so happened to be baby poems.

“One of our famous researchers in the field said computers are eventually going to be able to translate very well, but they won’t be able to translate poetry,” Knight told NPR. “So I kind of took that as a personal challenge.” And ultimately, he continued, “computers might even be better than humans at, say, trying to come up with a five-syllable word that rhymes with ballistics.”

As it turns out, he may just be right, as he and Ghazvininejad built a poem generator that builds a million poems for each 60-bit string it’s fed, assigning a distinct code to every word in a 327,868-word dictionary. Then, making use of natural language processing, the poem that is the most logical (read: memorable), gets to serve as a password. The poems are just as secure as the 60-bit string, but given that they’re English rhyming words, they’re much easier to remember than a long series of random numbers.

While the team also tested the effect of sentences as passwords, they found that poems were actually much more memorable. In a small experiment, they found that more than 60 percent of respondents could remember the exact poem two days later, which represented a higher proportion than could remember sentences.

You can test out the poem generator yourself here to create a truly secure password for yourself. And while it may not be worthy of William Blake, it’ll keep your accounts safe.

Lulu Chang
Former Digital Trends Contributor
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
No, 1Password wasn’t hacked – here’s what really happened
A person using the 1Password password manager on a laptop while sat on a couch.

Password managers have been struggling with security breaches in recent months, with LastPass suffering a particularly bad hack as a notable example. So when 1Password users got an alert last week saying their Secret Keys and passwords had been changed without their knowledge, they were understandably panicked. Luckily, all was not what it seemed.

That’s because AgileBits, the company behind 1Password, has just explained exactly what went wrong during that event. And while it wasn’t as bad as everyone first thought, it still doesn’t paint AgileBits in a particularly good light.

Read more
AI can probably crack your password in seconds
password manager lifestyle image

We can now add easily cracking passwords in a matter of seconds to the list of things that AI can do.

Cybersecurity firm Home Security Heroes recently published a study uncovering how AI tools analyze passwords and then use that data to crack the most common passwords used on the web.

Read more
NordPass adds passkey support to banish your weak passwords
password manager lifestyle image

Weak passwords can put your online accounts at risk, but password manager NordPass thinks it has the solution. The app has just added support for passkeys, giving you a far more secure way to keep all your important logins safe and sound.

Instead of a vulnerable password, passkeys work by using your biometric data as your login ‘fingerprint.’ For example, you could use the Touch ID button on a Mac or a facial recognition scanner on your smartphone to log in to your account. No typing required.

Read more