๐Ÿ”’ Cybersecurity for lawyers

User Tools

Site Tools

Trace:
passwords

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
Next revisionBoth sides next revision
passwords [2019/08/10 08:45] โ€“ neilpasswords [2019/08/14 08:02] โ€“ admin
Line 4: Line 4:
   * [[passwords#Use a unique email address, and a unique password, for every site and service|Use a unique email address, and a unique password, for every site and service]]   * [[passwords#Use a unique email address, and a unique password, for every site and service|Use a unique email address, and a unique password, for every site and service]]
   * [[passwords#Use a strong password|Use a strong password]]   * [[passwords#Use a strong password|Use a strong password]]
-  * [[passwords#For mobile devices with a PIN, do not use an obvious PIN|For mobile devices with a PIN, do not use an obvious PIN]]+  * [[passwords#For mobile devices with a PIN, use an non-obvious PIN|For mobile devices with a PIN, use a non-obvious PIN]]
   * [[passwords#Use a password manager|Use a password manager]]   * [[passwords#Use a password manager|Use a password manager]]
   * [[passwords#Do not change your passwords without reason|Do not change your passwords without reason]]   * [[passwords#Do not change your passwords without reason|Do not change your passwords without reason]]
Line 66: Line 66:
 If you use a password manager, you do not need to remember the password, and you can probably cut-and-paste it into the site or service, meaning it does not matter how long it is, or if it contains a complicated spelling. If you use a password manager, you do not need to remember the password, and you can probably cut-and-paste it into the site or service, meaning it does not matter how long it is, or if it contains a complicated spelling.
  
-====For mobile devices with a PIN, do not use an obvious PIN ===+====For mobile devices with a PIN, use a non-obvious PIN ===
  
 If you have a mobile device with a PIN rathe than a password, do not use an obvious PIN. If you have a mobile device with a PIN rathe than a password, do not use an obvious PIN.
Line 128: Line 128:
  
 Depending on the outcome of your [[threat_modelling|threat modelling]], you may decide that the convenience is an acceptable compromise. Depending on the outcome of your [[threat_modelling|threat modelling]], you may decide that the convenience is an acceptable compromise.
 +
 +===You cannot change your face or fingerprints ===
 +
 +You should use a different username and password for every account or service you use.
 +
 +Clearly, you cannot do this for biometrics (well, not beyond 10, in the case of most people, when it comes to finger/thumb prints).
 +
 +Moreover, you cannot realistically change your face, if an insecure storage of biometric credentials is compromised.
 +
 +
 +===Disable them in higher-risk situations ===
  
 You might also decide to use these unlock mechanisms most of the time, but disable them for certain activities (e.g. for travelling across borders). You might also decide to use these unlock mechanisms most of the time, but disable them for certain activities (e.g. for travelling across borders).
passwords.txt ยท Last modified: 2021/07/06 09:26 by 127.0.0.1