With the rise of cybercrime and the alarming occurrence of data breaches involving millions of compromised passwords, a new standard emerged: the use of distinct passwords for each system or application one logs into. While this was undoubtedly a safer approach, it presented its own set of challenges. Users often had to rely on handy Excel or Word files or resort to scribbling down their passwords in physical notebooks.
Enter tech giants like Apple, Google, and Samsung, each introducing their own solutions to this conundrum. Apple unveiled the Keychain, Google Chrome began securely storing passwords, and Samsung introduced the Vault. As time went on, password managers emerged as versatile tools, solutions, or environments, catering to a wide range of platforms, and their subscription costs varied from 10 to 50 euros per year.
A couple of years ago, Microsoft unveiled the Defender solution, significantly improving the security of an average user’s system, rendering premium antivirus software less necessary. In response, antivirus companies diversified into the field of password management.
Despite the initial inconvenience and effort required for setting up and maintaining Two-Factor Authentication (2FA) or One-Time Password (OTP) via email, SMS, or authenticator apps, it remains the most robust and secure method for safeguarding accounts. Additionally, alternative approaches such as biometric authentication and ongoing research into eliminating passwords altogether are gaining traction due to the inherent risk of password theft and misuse.
Personally, I have a strong preference for Bitwarden. Despite having explored various premium paid alternatives, I find Bitwarden to be on par with the premium solutions, excelling in its performance and lacking notable deficiencies. What sets it apart is its seamless compatibility with various platforms, including Apple, Android, Firefox, Chrome, and Edge. It can coexist harmoniously with Apple’s Keychain and Google Chrome’s password manager.
The operation of a password manager hinges on a master password. Upon entering the master password, all other stored passwords become accessible. A recommended practice is to create a master password in the form of a sentence, such as “ItRainsInSpainMainly,” or add a twist to it, like “ItSpraysInLondonMainly.” These sentences are long and virtually impossible for anyone to guess. This approach mirrors the one adopted by cryptocurrencies, which employ digital or physical wallets for storing assets. These wallets employ a series of six random phrases as keys, and a similar method can be applied to master passwords. Compose a sequence of six words, for instance: “Track Roller Flicker Dragon Lamp Wall.” By including special characters or numbers, you enhance the complexity further.
Within the password manager, there are password generators that can create formidable passwords like “3Y^!NvmeLfHM@T,” “SuH#$pK$9HuZKj,” or “vS9&4$w^j5@U$u.” These robust passwords are intended for use in various applications and are virtually impervious to cracking.
While it may require some adjustment, adopting these practices can substantially mitigate the risks associated with password security.
“
Jim Alkove, CEO of Oleria
The time for protecting data solely with passwords has come and gone. Today’s rapidly accelerating business environment necessitates strong multi-factor or passwordless authentication and a transition to new adaptive and autonomous approaches to access. Adaptive access allows an organization to reduce the risk of breaches by granting just the right access at the right time for the right duration. Autonomous access frees an organization from the expense of today’s largely manual approaches to managing access and allows them to accelerate with the pace of business, confident that data is protected.
Related Articles
No Results Found
The page you requested could not be found. Try refining your search, or use the navigation above to locate the post.