The concept of passwords is not new. In fact, it dates back to ancient times when secret codes were used to protect messages from being intercepted by enemies.
Fast forward to modern times, passwords have become an essential part of our digital lives. We use them for everything from email accounts to online banking and social media.
Are you tired of using the same password for everything and constantly worrying about being hacked? Well, you're not alone! In fact, a recent study found that a staggering (Verizon) 80% of data breaches involve compromised or weak passwords.
Using the same password for multiple accounts can be convenient, but it also poses a significant risk to your online security. It's comparable to using a single key for your front door and your safe - while it may be more convenient, it's incredibly risky.
So how then do you create a vault-worthy password for your every account and still remember all of them?
Let’s find out!
Before we get started, let’s get our definitions straight.
A password is a secret combination of characters or a code that is used to authenticate the identity of a user and grant them access to a secure system or data. A password is typically required to log in to a user account, whether it is a personal email account or a corporate network. The purpose of a password is to ensure that only authorized users have access to the system or data, thereby protecting sensitive information from unauthorized access, theft, or misuse.
The task of creating a strong password that you can remember can be quite a hassle.
Let’s look at two effective ways of writing vault-worthy passwords and still remember them.
A passphrase is a sequence of words or other text used to create a password.
The advantage of this method is that it creates a long password that is easy to remember.
Let’s create a strong password using the passphrase method:
Step 1: Choose a phrase that is easy to remember but difficult for others to guess.
For example, "I love to eat jellof rice on Saturdays with my friends" can become "ILtejroswmf."
Step 2: Add numbers, symbols, and capital letters to the passphrase. For example, "ILtejroswmf" becomes "1L2ejr@swmf!".
Step 3: Remember to use a unique passphrase for each account.
Honestly, this is the most important step, the only thing worse than having a weak password is using the same password for multiple accounts
Now that we have our passphrase, let’s see how we can remember it for all our accounts.
Below are some tips on how to choose a suitable passphrase for every account:
1. Choose a phrase that is easy to remember but difficult for others to guess.
It should not contain your personal information such as age, DOB, where you live, etc.
Here is a bad example of a passphrase to use:
2. Avoid using common phrases or quotes that are easily guessable.
A quote from your favorite writer is a bad idea, the lyric to a song is a no-go as well!
3. Use a combination of uppercase and lowercase letters, numbers, and special characters to increase the complexity of your passphrase.
That’s it for the passphrase method, try it out now as you update your passwords.
We have gone through the best practices for writing strong passwords. I am well aware that we all have strong updated passwords at this point but just to be sure, let’s emphasize again on some bad password practices:
We need passwords for our email accounts, our social media accounts, our online banking accounts, and even our streaming services. It can be hard to keep track of all of our passwords, and even harder now that we have strong, unique passwords for every one of our accounts.
This is where password managers come in.
As usual, let’s get our definitions:
Password managers are specialized software applications or online services designed to securely store and manage passwords for various online accounts. They act as a digital vault, housing all your passwords under a single master password, which you need to remember.
Password managers typically have a variety of features, including:
An excellent example of a password manager is Google’s password manager
Password managers utilize encryption techniques to ensure the secure storage and retrieval of your passwords. Here's a more detailed explanation of how they work:
When you create an account or enter a password into a password manager, it encrypts the information using strong encryption algorithms. Encryption is a process of converting the plain text (your password) into an unreadable format called ciphertext. This process involves using complex mathematical algorithms and a unique encryption key.
To access your password manager and retrieve your stored passwords, you need to create and remember a master password. The master password acts as the key to unlock the encrypted password database. It is essential to choose a strong and unique master password that is not easily guessable and not used for any other accounts (Follow the guidelines explained above👆🏽)
The encrypted passwords, along with their associated usernames or account identifiers, are stored in a password database. This database is typically stored locally on your device or securely synced across multiple devices if you're using a cloud-based password manager. The password database is protected by the encryption, ensuring that even if someone gains unauthorized access to it, they won't be able to decipher the stored passwords without the master password.
The encryption key, derived from your master password, is used to encrypt and decrypt your stored passwords. It is crucial to note that the encryption key is never stored anywhere. Instead, it is generated from your master password each time you access the password manager. This means that only you, with the correct master password, can decrypt and access your passwords.
Password managers often provide additional features, such as auto-fill capabilities. When you visit a website or log in to an application, the password manager can automatically fill in the appropriate username and password for you, saving you time and effort. Some password managers also offer synchronization across multiple devices, allowing you to access your passwords from anywhere while maintaining consistent and updated data.
To enhance security further, many password managers support two-factor authentication (2FA). 2FA adds an extra layer of protection by requiring a second verification step, such as a temporary code sent to your mobile device or a biometric scan, in addition to the master password. This adds an additional safeguard, making it more difficult for unauthorized individuals to gain access to your password manager.
By employing encryption, using a strong master password, and incorporating additional security measures like 2FA, password managers ensure that your passwords remain securely stored and protected. They offer a seamless and efficient way to manage and access your passwords while significantly reducing the risks associated with weak or reused passwords.
By now, you must have realized that Password managers can play a crucial role in maintaining good cybersecurity hygiene. Here are a few reasons why they are incredibly useful:
While password managers offer numerous benefits, it's important to be aware of potential security concerns. Like any other online service, password managers can be vulnerable to certain cyber attacks. Some notable security concerns related to password managers include:
One notable example is the LastPass data breach in 2015, where some user data was compromised.
It's important to choose password managers that prioritize security, regularly update their software, and promptly address any vulnerabilities.
It's crucial to secure your devices with strong passwords, enable biometric authentication where available, and employ additional security measures like device encryption to protect against physical attacks.
It's thus important to follow best practices, such as using a strong master password, enabling two-factor authentication, and being cautious while syncing passwords across devices.
In a world where the number of online accounts continues to grow, password managers have become indispensable tools for managing passwords securely.
By providing a convenient and secure solution, they help protect our digital identities and reduce the risk of falling victim to cyberattacks. While password managers are not without their concerns, when used correctly and in conjunction with other security practices, they significantly enhance our online security posture.
So, why struggle to remember complex passwords when password managers can do the heavy lifting for you? Embrace the power of password managers and unlock peace of mind in the digital realm.
That’s it for this one guys, I hope you learned a few things from this piece.
Let me know in the comment section ✍🏼