Password Managers (Password Safes)

Many computer users today have to keep track of dozens of passwords: for network accounts, online services, premium web sites. Some write their passwords on a piece of paper, leaving their accounts vulnerable to thieves or in-house snoops. Others choose the same password for different applications, which makes life easy for intruders of all kinds.

By using a password manager, users can keep their passwords securely encrypted on their computers.

A password manager assists in generating, storing, and retrieving complex passwords from an encrypted database. Types of password managers include locally-installed software applications, online services that are accessed through website portals, and locally-accessed hardware devices that serve as keys. Depending on the type of password manager being used and the functionality offered by its developers, the encrypted database is either stored locally on the user's device or stored remotely through an online file hosting service. Password managers typically require its user to create and remember one "master" password to unlock and access to any information stored in its database.

Using a password manager (password safe) allows you to use long, complex, and unique passwords for each of your sites and applications. This makes it much more difficult for someone to crack your passwords by guessing, by dictionary attacks, or by brute force. My preferred password manager is the KeePass Password Safe (although there are other quality password managers that you might like as well).

KeePass Password Safe

KeePass (http://keepass.info/) is a free and open source password manager. Your passwords in KeePass are stored inside an encrypted database that you control, on your own system, and are never synced or uploaded anywhere unless you want to take them from machine to machine. KeePass can also be run as a protable app, allowing you to take your passwords with you from one computer to the next by running KeePass from a USB drive. KeePass has its own password generator to help you create strong and uniques passwords for each of your accounts and applications. KeePass runs off-line (no Internet connection required).

KeePass can be run in Russian and many other languages as well.

I also like Password Safe (https://www.schneier.com/academic/passsafe/), developed by Bruce Schneier. Mr. Schneier's application has many of the same features as KeePass, and is an excellent choice to manage your passwords if you choose not to use KeePass.

Other top quality Password Managers include:

• Dashlane (https://www.dashlane.com/)
• Last Pass (https://www.lastpass.com/)
• RoboForm (https://www.roboform.com/)
• 1Password (https://1password.com/)

Using a password manager inproves the security of your on-line accounts. Using a password manager, combined with Two-Factor Authentication further enhances that security. I previously wrote about Two-Factor Authentication here on Wudewasa Blog.

The EFF has an Animated Overview: Using Password Managers to Stay Safe Online.

Research password managers a bit, and choose the one that best fills your needs. Regardless of which password manager you choose; a properly implemented password manager will enhance your overall security on-line.