Privacy

Can’t Remember All Those Passwords? Use a Password Manager

Two of the most important rules for keeping accounts secure are to have long, complex passwords and to use a different password for each account. But how can consumers possibly hope to remember 10, 20 or more complicated password and user name combinations? One way is to use a password manager.

Password managers are software that securely stores passwords and automatically retrieves them when logging in. Some password managers will even generate unique and complex passwords for each site or application.

Passwords may be stored in a file on your computer, in the cloud or to a USB stick. Each method has advantages and disadvantages. If you use multiple computers, using a USB stick will allow you to move the master file of passwords from one computer to another, as needed. When you remove the USB stick, the software and all of your passwords are removed from the computer. Storing the password file in the cloud means you can access it from any device, wherever you have online access. Whatever method you choose, the master file of your passwords should be encrypted and you should choose a very strong master password.

Many web browsers (e.g., Internet Explorer, Chrome, Firefox) have built-in password managers that will remember passwords for you. However, these password managers typically lack several important features. For example, Chrome and Internet Explorer store your passwords in an unencrypted file. Unless you encrypt your hard drive, others could access and view your password files. Firefox does have a master password feature that enables storing your passwords in an encrypted format. However, it does not generate random passwords and it does not sync your passwords across other platforms, such as iOS (Apple) devices.

There are several things to consider when choosing the best password management software. TomsGuide.com says that the best software:

  • can automatically create accounts as you log in to websites and automatically log you into a group of your favorite accounts simultaneously,
  • encrypts files using at least 256-bit encryption protocols,
  • generates complex passwords and
  • protects you from keylogging and phishing attempts.

Don’t forget about your smartphone and tablet. Your password management software needs to work there, too.

The most full-featured password managers come at a price, but there are many excellent password managers available for free. PCMagazine has put together reviews of the best paid and free password managers.

 There is another way of managing your passwords that is free and low-tech: write them down. Security experts have long advised against writing down passwords, but those views are changing. Bryan Krebs recommends that you not keep the passwords in plain sight or store them in plain text on your computer. According to Krebs, the most secure method of writing down your passwords is to create a list of the websites for which you have passwords, then write down your login name and a clue to the password that is meaningful only to you.

What most security experts agree on is that it is important to have unique passwords for each site and the passwords must be hard to guess or crack. You can choose the method of remembering them that works best for you.