What is a password manager and why do you need one…
I was speaking to a contact who is studying the cybersecurity industry and does not use a password manager. Interestingly enough, it’s actually a debate I’ve seen crop up a few times in cybersecurity circles.
A password manager is an application to help your store and manage all the various usernames, passwords, URLs, what have you…that all come as a byproduct of the digital terrain that we are increasing surround by.
I used to think “But MY password is unique! It’s not “password” or any of the typically mocked but often used, much maligned, stereotypical passwords. Oh, no. Mine was different and unique. And there are people who do this by coming up with on super unique base, and combination of things that NO ONE would or may ever guess. (Not even in the future through A.I. attacks on legacy items?) Or maybe one has used a “randomized” set done on a completely isolated computer that has never been tainted by touching the internet in the first place. Let’s go with all this and entertain the idea.
So maybe you are so certain of this base password that you have further tweaks that you do to the password with different sites? Does this sound familiar at all?? It should because it’s what most people would have to go through in their mind in order to have a functional cataloging of all their individual passwords for each site.
Even if this is the case, with all the breaches that have occurred, are occurring, or will occur, it only takes one site to get breached for a malicious character to target you.
Benefits:
- They store hundreds of passwords.
- Many fields to control length so you can have passwords that contain various amounts of characters.
- Uppercase and lowercase options
- Options to include special chatacters
Once you take the time to set it up, it offers peace of mind. You can see over time how many accounts we build up. Some people may be surprised at just how many we build up in our journeys through the internet.
Never mind that some sites ask users to set up accounts when it’s not really necessary.
All of your passwords are stored in a vault, which must be accessed with one single password.
In your vault you’ll have different types including the typical “Login”, and additionally, “Card”, “Identity”, and “Secure Note” types. You’ll have the ability to create Folders, if you choose to do so. As well, there’s a “Trash”.
When you add an item you can usually store the basics of “username” and “password”, but some applications go further and allow you to store all kinds of fields including Authenticator Key (TOTP), URLs, Notes, Ownership fields, Miscellaneous fields, and Custom Fields to create your own not listed.
The password manager with generate a new password for you according to the criteria that you specify. Yes, you can type in your own password but the whole point is harnessing the power of the application to come up with harder-to-guess passwords than you or myself can come up with.
Longer passwords are preferred over shorter ones and password managers allow you to have passwords of 24-length characters, or more.
It’s one of those things that once you’ve taken the time needed to set it up properly, you’ll wonder how you managed without it previously. It also adds to one’s sense of security and ease of mind.
You can quickly search “Best Password Manager” for many Top 10 and Best Five types of lists.
Another not is paid vs free. You get what you pay for, but also, something is better than nothing.
You’ll want to consider and reconsider what you store in the vault. More old adages of “don’t put all your eggs in one basket” come to mind and you may want to consider more than one option for various needs. Start with one and then you’ll see if you want to further explore other options.
Also, about the browser extension password managers. They may not be as secure as a standalone application. There are instances of those being breached and exposed.