Passwords are inherently insecure. It’s more than likely that you use the same password for several different services. If you’re really on top of things, you might use a password manager to generate and remember passwords for you. Even then, the password manager service is at risk of being hacked and your passwords being stolen. Bugs happen that can leave you vulnerable.
What is the solution?
I present to you the Passwordless method!
It’s quite simple:
- For every account you sign up for, generate a new random password that you will never remember; something like this
- Don’t write down the password or try to remember it in any way.
- If you need to login to the account, use the password reset function. Most accounts will let you keep an active session for a long time so you won’t need to do this often.
- If there is a password that you need to use often—and don’t want to use the password reset function —- write it down on a notepad. Yes, on real paper.
There are several benefits to this method. First of all, the worst possible security breach only affects you on the service where the breach occurred. Secondly, this method forces a sort of pseudo two-factor authentication workflow—even for services that don’t support it. Finally, it’s quicker and easier to use than a password manager.