Read Bruce Schneier's excelent articles and blogs on this subject. You can find them all on the net.

Vlad

>Hi Everyone!
>
>Hope everyone had a great weekend!
>
>Had a questions for you password gurus. We are wanting to implement "strong" passwords in our applications and as I've been searching the internet I've not yet found any real standardizations for what constitutes the strength of a password. Does anyone know if there is some place that this is defined or is it just left up to the individual as to what constitues weak, poor, fair, good, strong, excellent, etc?
>
>Thanks for your input!