Strong passwords do not necessarily provide better security so why do we persist creating ones that are hard to guess -- and hard to remember -- when a computer can crack them in seconds, asks Bill Cheswick, distributing computing and communications researcher for AT&T Labs.