Creating a passphrase instead of a password that’d be tough for hackers to figure out.

Today, most people use smartphones and the internet for nearly everything. Whether for banking stuff, keeping in touch with friends through social media, or sending work-related emails.

Usually, everything about smartphone and internet is closely related to passwords to protect your personal data and other information which is very personal. Although it aims to protect, but password has become increasingly easy for malicious actors to crack. That’s why it’s important to create a password that’s strong and complex, even if it makes it more difficult to remember.

The perfect password may not exist, Etay Maor, an executive security adviser at IBM Security, told Business Insider. But he said there was a technique you could use to create passwords that would be tough for hackers to figure out but easy to keep top of mind. Maor suggests creating a “passphrase” instead of a password.

“Even if you choose a password, which is let’s say eight to 10 characters long and very complex, it’s still pretty easy for a computer to guess it pretty fast,” said Maor. The passphrase technique entails coming up with a memorable phrase you can use in place of a password, since the longer the password is, the more difficult it is for a machine to crack.

For example, a phrase like “I want to go to a Bon Jovi concert” and turn that into a password. A computer will take time to be able to guess it. A common technique algorithms use to guess passwords is what is known as a “brute force”, which is when the intruder would keep guessing various character combinations until it finds a match. It’s a task that would be very time consuming for a human but relatively easy for a computer.

But an even better strategy for making a secure password, Maor said, is letting a computer create one for you. He suggests using a password manager like LastPass or 1Password, which can generate complex, randomized passwords on your behalf and auto-fill them when you log in to services on the web. This can help you avoid the critical mistake of using the same password for multiple websites.