Pages

Friday 7 December 2012

4 BETTER WAYS TO DO PASSWORDS


New Picture 66
4 Better Ways To Do Passwords
By Alexander George,
Popular Mechanics, 6 December 2012.

Maybe someday we'll have fingerprint identification to log us into Facebook. But until then, we're stuck trying to remember a host of different usernames and passwords for our various accounts. Here are a few companies trying to do it better.

It's been the same technology for decades now - the same security authentication methods that have been around since the dawn of the internet. The same security protocol that one used to sign on with AOL 3.0 gets you into iCloud, Spotify, even your bank account. The tyranny of usernames and passwords goes on, with no end in sight.

There would be no complaining if this method was actually safe (it isn't), or if we could use the same username and password for all of our accounts. But security experts warn us of the peril of using the same password for multiple accounts, so here we are keeping disorganized spreadsheets or crumpled-up Post-its to remember the different authentications we use for Gmail, our work email, Dropbox, Hulu Plus, our bank account, our other bank account.... And it gets worse when some won't let you use symbols, while others require them, or some need a capital letter while others won't allow it. It's a mere frustration when it takes a few extra minutes to log onto your Netflix account, but a major irritation when a mistyped word or forgotten password locks you out of your own data - and an epic disaster if someone breaks into one of your key accounts.

Until a solution comes along to break the stranglehold of passwords, companies are trying to come up with simple ways to help us cope with the fact that we need to remember 15 different passwords - which are better the more nonsensical and complicated they are - without writing them down on some easily stolen piece of paper. Be warned: These aren't invulnerable depositories. Hackers have managed to break the cryptography some programs use. But here's the best of what's around.

1. LastPass

New Picture 67

Best For: Average Joe

Dump all your user names and passwords into this password manager's secure server, and the next time you type your username into Amazon, LastPass steps in and spookily fills out the password field. Because it's web-based, LastPass excels across multiple platforms, meaning you can go between devices and computers without losing your info. It's also got a solid auto-complete system that's probably more secure than what your browser uses.

If you're one of those users still using your childhood pet's name as a password, LastPass will also generate passwords for you. Best of all, it's free, and the premium version costs just US$1 per month. The only bummer is a security breach that happened last year.

2. 1Password

New Picture 68

Best For: CIA Operative

Sort out and save your login info for each site, then 1Password takes you to the site, where it fills out all the fields for you. It's expensive, but you get what you pay for with this system. Prices start at US$50, not including the mobile apps, but you get an intuitive and endlessly tweakable interface that'll sync with Dropbox.

1Password will also generate passwords and auto-complete forms, but the most creative touch is a protocol that automatically removes a password from your computer, tablet, or smartphone's clipboard after 90 seconds. While Windows and Android versions exist, the interface and compatibility of 1Password favours Apple users.

3. SplashID

New Picture 69

Best For: The Post-It Note Scribe

Constantly forgetting information such as credit card numbers, Wi-Fi passwords, and voicemail pins? With the apps and desktop versions of the SplashID system, you can store then in a cloud storage space that's more secure than your Dropbox account or Simplenote page. Wi-Fi syncing makes sure everything is available across your devices. Be careful if you have an unusual firewall setup, though, as the software is sensitive.

4. Google with 2-Step Verification

New Picture 70

Best For: Anyone with Anything Google

Unless you still have an @aol.com mail account, you probably have a few things going on with Google - docs, mail, maybe even Google+. There's a reason everyone keeps using the company's software: it's intuitive and reliable, but if you use it for sensitive info, take the half hour to set up 2-step verification. After some copying of numbers and receiving of texts, you'll be sure that anyone hoping to remotely reach your files has a mountain to climb. Once activated, whenever you log in with a device other than your laptop, phone, or tablet, Google will send you a text with a verification code that you'll need to input. For programs you use regularly, Google will also give you application-specific passwords that you'll only need to use once to vet a mail client like Sparrow or the GMail app. It's a sophisticated system, all for free.

Related Links:

[Source: Popular Mechanics. Edited.]

Related Posts:


No comments:

Post a Comment

Please adhere to proper blog etiquette when posting your comments. This blog owner will exercise his absolution discretion in allowing or rejecting any comments that are deemed seditious, defamatory, libelous, racist, vulgar, insulting, and other remarks that exhibit similar characteristics. If you insist on using anonymous comments, please write your name or other IDs at the end of your message.