• Passwords, pass phrases, PIN, door code

• WEAKEST form of authentication

• Tough to remember passwords

• Users tend to choose easy passwords

• Easy to guess if applicable

• Written on Post-Its (BAD!)

• Brute-force attacks always work

• Try to make passwords phrases

  • "EyeLov3CI$$P7254&"​

​