January 21, 2011 | Category: How To Guides,Security | Author: Gildas
There is a great piece of software you can use that will securely remember all you passwords for your, allowing you to use longer passwords and different passwords on different sites.
The software is the aptly named LastPass
This small piece of software works in Windows and Apple Mac it also works on your iPhone, iPad, Blackberry, Android or Windows smartphone and keep them all synced up with each other.
I’ve been using this for around a year now and it it is very good, it means you can have long secure passwords, without having to remember them.
From a security standpoint is is secure, as long as you use a long master password, see here for a guide to making long secure passwords it is secure.
Another tip if you using it on a laptop, make sure you close Internet Explorer/Firefox/Chrome when you’ve finished using it and tick this checkbox below in the Lastpass preferences
If you interested (which you should be really) here’s what Lastpass has to say on security, this has also been verified by a well know security researcher.
1. All encryption and decryption happens on your computer.
When you create your LastPass account, an encryption key is created on your computer (your Master Password, or MP, and email go through a complex, irreversible process known as hashing to form your encryption key). Any sensitive data you then save to your account is ‘locked up’ by the encryption key while still on your computer, then sent in encrypted form to LastPass’ server.
2. The sensitive data that is harbored on our servers is always encrypted before it’s sent to us, so all we receive is gibberish.
Since the encryption key is locally created each time you submit your MP and email, all that we store and have access to on our servers is your encrypted data. Without your unique encryption key, your sensitive data is meaningless gibberish. Even if someone were to mandate that we provide a copy of our database, the data would still be unreadable without your encryption key.
3. We never receive the key to decrypt that data.
The unique encryption key formed from the hashing of your email and MP is never sent to our servers. We never, for any reason, would ask you for your MP, so the key remains safely with you.
Basically what is says is the Lastpass do not store your passwords in a format they can read and have no access to them, also if you forget your password, they can’t get it back.
If you need a hand setting anything like this up, just ‘Dial A Geek’ today and book an appointment for a time that suits you : 07726 324 034
Related Posts
There is no related post.
