Will strict complex password increase your application or site security?

Photo by Lysander Yuen on Unsplash

If you think that strict/complex password requirement would increase security for you application or site, then you would be wrong.

Strict/ complex password policies would actually lower the security. Here is the short list of some bad ideas and some recommendations from the NIST.

  • Do not restrict password length to…



Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Ishan Liyanage

Ishan Liyanage


Passionate Technical Lead, Senior Software Developer and free and open source software advocate. Based in Singapore.