The prolonged death of the password
Passwords have been the bane of our existence since people realized they could be hacked. We’re now getting to the stage where the Computer Security community is maturing away from passwords. For now however they’re something we need to live with. Corey Williams, Senior Director at Centrify, has expressed their views on current security concerns:
“Our government and democracy continues to face an existential cybersecurity assault. Sensitive data, including names and personal information continues to be stolen. The most effective step to strengthen national cybersecurity is to eliminate our dependence on passwords alone. Until we have something better than passwords protecting our accounts – something like Multi-factor Authentication (MFA) – we will continue to see these breaches result in success for attackers, and losses for all of us.”
By now we all know the common passwords – password, 12345, dragon and so on. For now however the real question comes down to; how to make a good password, over not creating bad ones.
Almost everyone will have a different set of advice for: setting up a password, storing a password and remembering passwords. The piece of information that almost everyone agrees on however is length. The longer a password is, the harder it is hack. With these vast arrays of unique and long passwords we’re bound to get into the predicament of forgetting one or two of them. That being the case how can we keep these long passwords while also having easy access to them?
Thanks to password managers we’re able to meet this criteria. Tools such as Dashlane allow us to not only store passwords in a central location but also allow for the syncing of this password repositories across devices.
We no longer have the need to remember an array of passwords and instead simply need to remember one master password. Many password managers and other tools will also provide functionality for dynamic and random password generation so that you don’t have to create new and unique passwords for each website you visit. Dashlane also sports functionality for api password changing (This allowing for password changes by the click of a button).
While passwords are undergoing their long and significantly prolonged death it’s nice to see tools like Dashlane that are both making the transition more secure and viable for the time being.