Learning About Internet Security

Saving Passwords

Security Professionals are entrusted with many types of keys in the course of their duties. Passwords are as important as any lock key and perhaps even harder to protect. Unlike a physical key, which has to be duplicated and usually manufactured, a password only needs to be memorized or published to have its integrity compromised. Passwords cannot be put into a lockbox and therefore present an interesting challenge in protection.

Between so many Internet web sites offering password access, and web browsers that offer the ability to store passwords for various sites on your behalf, the temptation often arises to simply select the option of having the password saved for you. However, it should be noted that by doing so, you open yourself up to the possibility of having someone use your computer and gaining access to protected areas while logged in as you.

Alternative methods to saving the passwords in your web browser include:

1. Using a global password that you use for access to web sites of a general or safe nature. This password may be saved if desired.
2. Using a password that is based on a combination of some secret combination and the web site for which you are gaining access.
3. Memorizing a single password that you use for everything. (Not recommended.)

Conclusion - Whether at work or at home, saving your passwords is a risky process and is not advised. It is also recommended that you avoid writing down your passwords in a list that is kept on your computer.

By Steve Duell
ASIS SFBA Webmaster