Password

Definition

A secret word or phrase that proves your identity to access accounts or systems, functioning like a key to your digital house or vault.

Use Cases

• Google: Protecting user accounts from unauthorized access — Google Accounts support passwords and strongly encourages adding 2-Step Verification; it also offers passwordless options like passkeys to reduce reliance on passwords. (Stronger account protection and reduced risk from password theft when users enable additional verification methods.)
• Microsoft: Securing employee access to Microsoft 365 and corporate resources — Organizations commonly use Microsoft Entra ID (Azure AD) with password policies (length/complexity), conditional access, and MFA to harden password-based sign-ins. (Improved resistance to common attacks like password spraying and credential stuffing when combined with MFA and access policies.)
• Okta: Centralized workforce identity access across many SaaS apps — Okta customers often enforce strong password policies, monitor sign-in risk, and require MFA for sensitive applications to reduce the impact of compromised passwords. (More consistent access control across applications and reduced account takeover risk when MFA and monitoring are applied.)

Frequently Asked Questions

What's the difference between a password and MFA?

A password is something you know (a secret). MFA (multi-factor authentication) requires an additional factor, like something you have (an authenticator app or security key) or something you are (biometrics). MFA helps protect you even if your password is stolen.

When should I use a password?

Use passwords whenever an account requires them, but treat them as a baseline control. Use a long, unique password for each account, store it in a password manager, and enable MFA—especially for email, cloud admin accounts, and financial services.

How much does a password cost?

Creating a password is free, but managing passwords securely can have costs. Common cost factors include password manager subscriptions, enterprise identity tools, MFA solutions, help-desk time for password resets, and the potential cost of breaches caused by weak or reused passwords.

Category: security

Difficulty: basic

See Also

• Encryption
• Firewall
• CloudTrail
• IAM
• Active Directory