Disclaimer: We sustain our work & review products through paid collaborations.
How to Make a Strong Password You Can Remember

How to Make a Strong Password You Can Remember

Discussions
Last updated:

At this point it’s general knowledge that passwords should be strong. The problem is that it requires a random mess of letters, numbers, and symbols you’ll easily forget. Good news: it doesn’t have to be that way.

A strong password is at least 16 characters long and combines uppercase and lowercase letters, numbers, and symbols, or uses a string of four or more random unrelated words. The best way to manage strong, unique passwords across all your accounts is with a password manager, but even then you’ll need to come up with a master password.

Inserting password

In this guide, we explain how to create passwords that are genuinely hard to crack without making your life harder every time you log in.

50% discount for 1-year subscriptions and add-ons
Keeper logo
Take advantage of Keeper's occasional promotion on yearly subscriptions and add-ons to get 50% off the service.
Benefit From Keeper's 50% Discount

What makes a password strong?

A strong password starts with its length. Back in the day, the security standard was 12-character passwords, but eventually it was upgraded to 16 characters or more.

Complexity also helps, but a long password made from random words can be just as strong as a jumble of characters and much easier to remember.

Uniqueness matters as much. Reusing a single strong password across multiple accounts can still lead to account takeovers if a single website is compromised and attackers try the same login on other sites.

Also, tricks like changing “password” into “p@ssw0rd, adding “1!” at the end, or using birthdays, pet names, and other personal details are weaker than they look because cracking software already checks for those patterns.

 

Three methods for creating a strong password you'll actually remember

Passphrase

The passphrase method is the modern gold standard for creating memorable passwords.

Passphrase password

Instead of forcing yourself to remember something like “X9!qR2#vL0”, choose four or more completely unrelated words and string them together, such as #Staple-Gorilla-Chair-Tuesday22#.

The key aspect is randomness: phrases like “my red coffee mug” are easier for humans and software to guess because the words make sense together.

That’s why a weird combination of unrelated words gives you length, unpredictability, and something your brain can still hold onto.

Sentence

The sentence method, often associated with security expert Bruce Schneier, turns a memorable sentence into a password.

Start with a sentence that means something to you, then use the first letter of each word and mix in numbers, capitalization, or symbols.

For example, “You won’t guess my pass” could become “UW@ntG3$$MaKfeR!”. This method is especially useful for your master password or a few high-priority accounts, because the original sentence provides a memory hook without making the final password obvious.

Typing password on laptop

PAO (Person-action-object)

The PAO method works well if you think visually. Pick a person, an action, and an object, then turn that mental image into a password.

For example, imagine “Einstein juggling pineapples.” You could take parts of each word and add symbols or numbers to create something like “EinJugPin!42”.

The stranger the image, the easier it is to remember, which is exactly why this technique can work better than memorizing random characters.

Common password mistakes that cancel out all the effort

  • Using the same strong password everywhere: if one account is breached, attackers can try that password on your other accounts, such as email, banking, shopping, and social media.
  • Creating predictable patterns: passwords such as “Facebook123!” and “Gmail123!” feel customized, but password crackers know to check for site names plus sequence numbers.
  • Relying on obvious substitutions: replacing @ for a, 3 for e, or 0 for o, is too common, and crackers also know about this.
  • Saving passwords somewhere unsafe: creating a strong password but saving it on an unprotected note, spreadsheet, or photo on your phone.

Password on a sticky note

When memory alone isn't enough: using a password manager

Memory tricks are useful, but they don’t scale.

You might be able to remember a handful of passwords, but most people have dozens of online accounts. All of them should use different strong passwords, and that’s where memory alone becomes unrealistic.

A password manager solves this by generating strong passwords, storing them in an encrypted vault, and autofilling them when you log in. In this case, the only password you have to remember is the master password that unlocks the vault, which is where the passphrase or sentence method becomes especially useful.

A password manager like Keeper uses zero-knowledge encryption, which means even the company can’t see what’s stored in your vault. It can also generate strong passwords or passphrases, sync them across devices, autofill logins, and monitor for breached credentials. Keeper also supports biometric login, so once everything is set up, you don’t need to type your master password every single time.

Keeper

Editor's rating:
Starting price: $1.67/mo
Main features
  • Zero-knowledge encryption
  • Cross-platform support
  • One-time share
  • Passkey support
  • Strong security
  • 24/7 customer support
  • 30-day free trial
  • Cross-platform autofill
  • Limited free plan
  • Dark web monitoring costs extra
  • No custom categorization
Summary
Hide summary

Keeper is a reliable password manager with strong security fundamentals.

The software is built on a zero-knowledge architecture and uses AES-256 encryption, meaning your data is encrypted on your device before it reaches Keeper's servers. The password manager generates passwords with up to 100 characters and supports passkeys for quick authentication.

We found the apps responsive across platforms, with automatic syncing and reliable autofill through KeeperFill. Organization works through folders and subfolders, though you can’t create custom categories.

Personal plans start at $3.54 per month, while Family covers five users for $8.71 monthly (both billed annually). The 30-day free trial doesn’t require a credit card, and there are occasional promotions that offer up to 30% off. Better yet, if you sign up through our affiliate link, you get an exclusive discount of 50%

Special offers
View offers
50% discount for 1-year subscriptions and add-ons
Free dark web scans with Keeper
Free encrypted message app with Keeper
Up to 40% discount on Keeper Business
50% off Keeper for students
Free secure password generator with Keeper
50% off Keeper for Best Reviews readers
30-day free trial of Keeper
Free mobile password manager with Keeper
40% discount for military and medical personal

Essentially, instead of trying to invent and remember a unique password for every account, you only need to create one excellent master password and let the password manager handle everything else.

Conclusion

Ultimately, strong passwords don’t have to be impossible to remember gibberish.

A long, random passphrase, a sentence-based or PAO password, provides you with something secure enough for real life and memorable enough to use.

However, for everything beyond your master password, a password manager is the practical answer. Tools like Keeper handle the heavy lifting, including generating, storing, and autofilling strong passwords across every device, so the only password you ever need to create yourself is the one that opens the vault.

FAQ

What is a strong password example?

A strong password can be a random string like “tV$8mKp!2xQn9zL#” or a passphrase like “Gorilla-Lamp-Tuesday-Fence22”. Both are long, unpredictable, and avoid obvious patterns.

How long should a password be?

A password should be at least 16 characters long for most accounts. Longer is better, especially for important logins like email, banking, and password managers. A 20-character passphrase is often much harder to crack than a shorter, more complex password, yet easier to remember.

Is it better to use a passphrase or a password?

For passwords you need to remember, a passphrase is often the better choice. Four or more random, unrelated words create a long password that is easier to recall than a random string of characters. Just make sure the words don’t form a predictable sentence or phrase.

Can a password manager generate strong passwords for you?

Yes. Most password managers include a built-in generator that creates long, random passwords or passphrases for each account. They also store those passwords automatically, so you don’t need to create, type, or remember them manually.

What makes a password easy to crack?

Short length, common words, personal details, predictable substitutions, and password reuse all make passwords easier to crack. Even a complex-looking password can be weak if it follows a pattern that attackers already know.

Discussions

Share your thoughts, ask questions, and connect with other users. Your feedback helps our community make better decisions.

©2012-2026 Best Reviews, a clovio brand – All rights reserved