2023-03-07
password manager
How to choose a good password manager? What questions should I ask myself?
You live it almost every day! If you connect to your bank, your favorite social network or an online shopping site via the Internet … you must show your credentials and identify yourself with a username (often an email) and a password. Sometimes, and for increased security reasons, you are even asked for an additional code, sent by sms (text) or randomly generated with an application on your phone or a keychain provided by your banking institution. The passwords required have become more and more numerous, complex, and consequently, more difficult to remember, even impossible if you have a lot of them! And this puzzle is not going to get any easier right away. To increase this security, you are even asked to change them every 3 or 6 months... There are therefore tools, which today allow you to gather all this information and this secure access to a single place, from a "manager many passwords", using a single "super password" or even a "dongle" to recognize them all! The challenge of these tools is of course, to be as secure as possible!
Before rushing to choose an application or tool for your passwords, it is necessary to understand their basic functioning and evaluate the consequences of our evaluations. You have to ask yourself a few preliminary questions to make an informed choice, but above all to understand the challenges that our passwords represent for security, and what the immediate impacts will be.
It is quite common, for the sake of simplicity, that our passwords are all the same or even very simple in order to better remember them and this is not a good idea. Simple or popular passwords should therefore be avoided. Hackers today have many tools to bypass security and discover your passwords. They compare them using words from the dictionary but also against databases of already hacked passwords, which have leaked on the Internet or the "dark web" and can easily be used. There are therefore 4 basic rules to follow in order to choose a simple and robust password:
These rules, understood and applied, will help you find nearly impossible-to-crack passwords quickly. You can also use password generators that create complex random passwords for you. The goal here is to generate hard-to-crack passwords. The more complex the password, the longer it will take to discover, to the point of discouraging hackers from finding it easily and even from continuing their investigations. You will also be able to generate a super (unique) password that you can use in your password manager and that you will have to remember. And of course, you don't have to copy it on a "post-it" stuck on the back of your screen or your keyboard!
Choosing a password manager is above all choosing software according to your needs and understanding what its possible shortcomings and advantages will be. Forget the unique tools, installed on your computer and that you will only pay once. Our time no longer allows it. These are monthly or yearly subscriptions and here are some of the reasons why:
We therefore naturally understand that all this has a cost, which companies cannot absorb ad vitam, aeternam!
Finally, you have to choose a password manager according to your needs. Here are some questions to consider when choosing the latter:
These questions will allow you to better choose your password manager, according to your needs.
There are many software to manage your passwords and more. The following sites offer you a choice of several online applications and have evaluated them for you:
Reference : https://www.tvanouvelles.ca/2023/01/02/voici-les-50-mots-de-passe-les-plus-populaires-de-2022 (In French)
(...)
News: In December 2022, "LastPass" software, an online password manager, was hacked. It is relevant to ask the question, how the data of the management of our passwords are managed with these online sites. If we push the reflection a little further, has the company that develops this software also taken all the measures and means to secure their information and their development?
Sources :
Need more information about our audit security or the law 25? Contact us.