Password Managers: What are they?

images.jpg

With so many tech devices in our daily lives, remembering our many passwords and keeping them safe is getting harder.  

Password managers can help. Like a virtual vault, these software applications store and protect all of your passwords in one secure place on our devices (e.g. mobile devices or computers).

Why use a password manager?

  • It helps you to create complex, distinct, secure passwords for each of your accounts e.g. for websites, applications etc., and stores them.

  • It can enter passwords for you.

  • You don’t have to memorize or write down your passwords.

  • It removes the temptation to re-use same password for multiple accounts.

  • You only need to know and remember one master password to access all of your passwords stored in a password manager.

Note of warning: The downside of using a password manager is that you must never forget your “master password”, otherwise you will lose access to all of your other passwords. It should be noted that once your master password is forgotten no one can retrieve them for you , not even the product owner/vendor and you will have to reset the passwords on all sites/areas you used the password.

List of Password Managers

ITSS does not endorse or provide any support for a particular product. Below is a list of widely used password managers.

-        Keepass and KeePassXC (open source)
-        LastPass
-        Dashlane
-        RoboForm
-        1Password
-        Keeper
-        Enpass
-        StickyPassword
-        Zoho
-        True Key

Things to consider when choosing a good password manager

-        Is it user friendly? (ease of use)

-        Is it actively updated and patched? (always use the latest version)

-        Does it create strong passwords?

-        Where is the data stored and how is it encrypted?

-        Does it have multifactor authentication?

-        Can you use it across many devices?

-        Does it offer you a way to securely share passwords in a team?

Remember, there is never a perfect solution in information security, this also applies to password managers. As you use password managers, you still have to maintain good cybersecurity habits such as keeping your software up-to-date, not leaving your password manager running when you are not actively using it, and ensure that you use two-factor authentication for extra protection.

— Submitted by Dele Ogundele, IT Security Specialist (ITSS)