this post was submitted on 11 Dec 2023
112 points (92.4% liked)

Privacy

31938 readers
850 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

A PasswordCard is a credit card-sized card you keep in your wallet, which lets you pick very secure passwords for all your websites, without having to remember them! You just keep them with you, and even if your wallet does get stolen, the thief will still not know your actual passwords.

A very cute idea, well implemented.

Your PasswordCard has a unique grid of random letters and digits on it. The rows have different colors, and the columns different symbols. All you do is remember a combination of a symbol and a color, and then read the letters and digits from there. It couldn't be simpler!

A chain is only as strong as its weakest link. It's far safer to pick secure passwords and write them down, than it is to remember simple and easy to guess passwords. You already protect your wallet very well, and even if it does get stolen the thief will still not know which of the many thousands of possibilities on the card is your password.

you are viewing a single comment's thread
view the rest of the comments
[–] Fake4000@lemmy.world 27 points 11 months ago (4 children)

Why not use something like Keepass? Just one password to remember.

Am I missing something?

[–] amju_wolf@pawb.social 17 points 11 months ago (2 children)

It's good for people who don't trust, can't or don't want to use password managers. It's also way simpler for a regular person (who'd otherwise write the password down anyway) while still being quite secure.

It'd also be great for choosing your password manager master password without risking that you forget it and without writing it down outright.

I like it, clever and practical.

[–] jet@hackertalks.com 8 points 11 months ago (1 children)

one of my good friends, reuses the same simple, short, password on everything.... her facebook got compromised and she STILL wont change her password.... its maddening.

I'm thinking of trying to get her to use a password manager, or at least a card like this....

[–] Coasting0942@reddthat.com 2 points 11 months ago

Hardware security key might be better.

[–] drasticpotatoes@lemmy.dbzer0.com 4 points 11 months ago

I would also add that I like the mobility of not needing to log in somehow to access my passwords. If I am on a friend’s computer, for instance, all I need to do is visit a website with my current password generator.

[–] KISSmyOS@lemmy.world 6 points 11 months ago

With this method, you don't need access to an electronic device that's tied to your password manager, don't need to trust a cloud provider, don't need to set up your own cloud.

[–] jet@hackertalks.com 5 points 11 months ago (2 children)

No, your not missing anything. Its a interesting option, thats all.

Where do you keep your KeepAss master password? Perhaps a password card could be a interesting way to keep/secure the master vault password for a password manager.

[–] 314xel@lemmy.world 7 points 11 months ago* (last edited 11 months ago)

Where do you keep your KeepAss master password?

In my head. If you use a long passphrase, it's easy to remember, easy to type, and secure.

The pregenerated book of codes is used since ancient times and it is interesting, but I would much prefer to educate people to use passphases instead.

And everybody has a phone with them at all times, you can have Keepass on it. It doesn't use the cloud, it's local, and if you need to sync the password database file automatically with your PC it's safe to keep it in the cloud, it's encrypted and only decrypted locally. But I myself use a self-hosted instance of Nextcloud.

[–] Fake4000@lemmy.world 5 points 11 months ago (1 children)

It's an interesting concept, but I love to carry a wallet as thin as possible.

I'm not George Costanza :)

[–] jet@hackertalks.com 3 points 11 months ago* (last edited 11 months ago)

Fair!

Just remember to never give your secret code to anyone. https://www.youtube.com/watch?v=aUVd4cFD5-s

[–] BearOfaTime@lemm.ee 5 points 11 months ago* (last edited 11 months ago) (1 children)

I think this would be useful for people who only have a few passwords, or don't use tech heavily.

Hell, maybe it could be useful for my day-to-day passwords, since I have probably 100+ in Bitwarden.

I'm not getting my elder family members to use Bitwarden.

[–] SmoothLiquidation@lemmy.world 3 points 11 months ago (1 children)

I got my mom to use Bitwarden. There was a bit of effort setting her up, but now she is really happy with it.

[–] BearOfaTime@lemm.ee 3 points 11 months ago (1 children)

Nice! Congrats!

How old is she? How did you market it to her?

[–] SmoothLiquidation@lemmy.world 4 points 11 months ago (1 children)

She is in her 80's. I mostly just explained WHY she would need one, and promised once she was done with the transition, things would be easier. Her old password method was a weathered old piece of paper with everything scribbled down on it, with lots of old pet names and other animals with random numbers attached.

Now she is very happy with being able to have all of her passwords ready either on her computer, phone, or iPad, and she feels a lot more secure with the long random passwords.

[–] BearOfaTime@lemm.ee 3 points 11 months ago

Wow, 80s! I'm seriously impressed, by both of you. She must be something else to be willing to try something so foreign to her, and you clearly knew how to present it to her.