Best Practices for Managing Passwords Safely

Most of us struggle with keeping and securing passwords for the countless accounts we access. Most users today have to keep track of sometimes dozens of passwords for email, online banking, social networking, and more.

It is really a poor security practice to use the same password for all sites. Multiple passwords, strong passwords and the regular changing of passwords (at least every 30 - 90 days) are strongly recommended to produce it more problematic for unauthorized persons to obtain them, and prevent them from potentially having access to your account fully for an indefinite period.

Strong passwords usually contain at the very least 8 characters, and include numbers, special characters, and upper- and lower-case letters. It is very important to refrain from using common words, easily guessable words (such as "password"), or words that identify with you (such as your birthday or pet's name). Microsoft provides a free password evaluator (*see bottom of article).

So, how could you match good password security practices, without forgetting the countless different passwords you've?

Consider using a password storage utility

The absolute most secure way to store and manage passwords is to use one of numerous available password storage utilities. These tools permit you to create one very strong password, which is then used to encrypt and store all other passwords.

But, wait - isn't storing all your passwords in one single place a bad idea? Remember that the single master password unlocks them all. There are always a few what to consider:

Utilizing a secure password storage tool is really a better approach than reusing easily remembered passwords everywhere.

Password managers hide your information behind a master password that only you know.

Good password managers offer two-factor authentication, which involves taking an additional security step to gain access to your account. It might involve, as an example, an original code that is delivered to your mobile phone and that you simply have to enter to gain access to your account. Two-factor authentication therefore requires something you know (your password) and something you possess (in this case, your mobile phone), making it far more problematic for an unauthorized person to gain access to your sensitive data.

Many password managers also take the extra security step of never sending your master password over the Internet. In case a master password is forgotten, you have the choice to reset it rather than retrieve it. In cases like this, the password manager acts as a safety-deposit box that the professional keeps without knowing what's inside, as well as holding a key to open it.

One of these of a totally free password keeper management tool is LastPass. LastPass - released in 2008 - appears being an add-on in your browser, and lets you safely store and secure your passwords using a master password. Passwords are encrypted locally and synchronized to any browser, and the important two-factor authentication described above is included. The tool - which includes a form filler that automates password entering - lets you quickly generate, organize and retrieve complex new passwords. Essentially, you are able to log in to your accounts directly through LastPass using complex passwords which have been generated through the service.

Use caution if writing your passwords down

The more passwords you use, the greater you may be tempted to publish them down to ensure you remember them. If you need to publish down a code, consider locking it in a table, filing cabinet, and other safe location that only you've access to. Also make sure that you do not reveal the account that it could be linked to. For example, don't jot down the URL for your bank together with your password written alongside it! Instead, either jot down the password, without listing what it belongs to, or choose a word or phrase which will remind you of one's bank, without it being obvious.

Keep individuals from trespassing on your desktop

Be sure you lock your computer before leaving your workstation. Also make sure that the password that unlocks your computer is not used for any purpose, and that it's strong.

Your passwords should always be kept private. Keep from using "remember password" settings in your internet browser, which will make it easy for someone who gains access to your computer to log into your accounts.

Do not store any passwords on your desktop, unless they're encrypted. Encrypting your passwords makes them completely unreadable to anyone, except you or their intended recipients.

When you yourself have any questions about safe password management, please don't hesitate to make contact with us via our website.