I will show you how to protect your KeePass password manager with true Two-Factor Authentication (2FA) using something you have and something you know. On top of that security, you should also be able to provide a password that you know to go with it. The idea is that you will generate a secure (and lengthy) private key and use that key to encrypt another key and use that final key as your “password” to unlock your password manager.
Public Key Infrastructure (PKI) digital certificates are the answer. Talk about putting all of your eggs in one (very insecure) basket. Inversely, Password Managers solve the problem of having to remember thousands of passwords to different websites but the security of these managers are typically sub-par and often require a single password (“master password”) to access your list of passwords. More progressive websites have started to allow users to log-in with their existing passwords but tack on a “second factor” authentication such as an SMS/text message code being sent to your phone or an e-mail with a One-Time Password (OTP). Unfortunately, not every website on the internet takes security all that seriously and still requires users to sign-up and authenticate with usernames and passwords.
0 kommentar(er)
