http://www.technologyreview.com/news/523746/honey-encryption-will-bamboozle-attackers-with-fake-secrets/ Wrote:Password managers are a tasty target for criminals, says Juels. He believes that many people use an insecure master password to protect their collection. “The way they’re constructed discourages the use of a strong password because you’re constantly having to type it in—also on a mobile device in many cases.”
lusich Wrote:I would like to add to @Lars first comment -- having a long, complex, random password is crucial. However, it is difficult in practice if you have to remember and type it in every time.
lusich Wrote:For the LP users, perhaps a good solution is to program the second slot of their Yubikey's (if they use them) to emit a static password. I believe that the Yubikey can hold a 64 character static password (containing numbers, small and large letters, and a special character). That's a pretty strong password all within itself. However, one can and should make it even stronger by simply adding a short phrase or keystroke sequence to the beginning or the end of the static-yubikey-password.
https://www.yubico.com/products/service ... -password/
Users browsing this forum: No registered users and 3 guests