Stick your password on a post-it
Sean, over at F-Secure, came with a brilliant idea to put passwords on post-its. No, seriously, not being sarcastic here!
Of course now don't all go using the same naming convention he uses in the example, invent your own, otherwise it's still quite obvious that passwords starting with 'ama' are for Amazon and those with 'gma' are for GMail. Pretty clever idea, I wish I had thought of it.
"And once you write them down, put them in your wallet. Think about it. What else do you carry in your wallet? That's right, your bank cards. And your bank cards contain your account name and account number."He continues to explore his idea by explaining you need a PIN to use the bank card, and suggests a similar way for creating 2-factor passwords in a really simple way. Take a generic part, identifying for example the website it's for, then add a hard to remember random part, and the last part you don't write down but you keep it somewhere in the back of your head and this part you use for all your passwords. Than insert that last part in a manner you only know into the other parts which you have written down, and there you go.
Of course now don't all go using the same naming convention he uses in the example, invent your own, otherwise it's still quite obvious that passwords starting with 'ama' are for Amazon and those with 'gma' are for GMail. Pretty clever idea, I wish I had thought of it.
Labels: infosec
Post a Comment