Welcome to Friday Faithfuls, the new Mindlovemisery’s Menagerie Challenge. I decided to help Yves out with this new challenge which will be about good news, innovation, gratitude, inspiring quotes, everyday heroes, nature, manifestation, miracles, random acts of kindness etc. The objective of this prompt is to help restore our faith in humanity. The Greek storyteller Aesop wrote the fable The Four Oxen and the Lion which teaches us that united we stand and divided we fall, so we should all stick together because humans can be good people when they are willing to help others who are in need. Malicious hackers are not good people, as they are trying to screw everyone over, because they lack ethics. They enjoy violating laws and utilizing malware to scam people and steal our information, because they are too lazy to get a real job. These cyber criminals are the scum of the earth, and we must take care to protect ourselves from their dastardly deeds.
In order to exist in the modern world, we need to have passwords to obtain extra security as they are required for social media accounts, online banking, medical records, and online shopping, so you can prove your identity, or authorize access to a resource. It is thought that the average person has 27 discrete online logins. For decades, we’ve needed passwords to do things online. In the early 1960s, American computer scientist and MIT professor Fernando Corbató (1926-2019) was developing a new kind of shared computer system and wanted a way for people to be able to protect their private files from others when they were working on the same machine. His solution was a password. Over the years, Corbató’s fix won out over other means of authentication, and this became the standard way that we log on to pretty much everything, everywhere.
Passwords are inherently insecure, as they can be stolen, guessed, or brute-forced, but because people tend to use bad ones and then reuse them, this exacerbates the problem. Technology is always changing and over time, people will begin to rely less and less on passwords, because they just don’t meet the challenge for anything that needs to be secure. I had my email account stolen and the Nigerian hacker pretending to be me, asked all of my contacts to send him money, which was really embarrassing. I had that email address for over 25 years, and I had to give it up and get a new one, which I was not happy about.
Today we have Password Managers, which are a digital police system that allows users to generate, store and manage credentials for both local services and online services. This can help in the creation and retrieval of strong credentials, as well as their storage in an encrypted database or their calculation on software packages that can be installed remotely. Your information is saved in an encrypted file to which you can get entrance using your master passphrase. Password managers like Keeper, NordPass, RoboForm, Dashlane and 1Password can track all those various alpha-numerics for you and even replace the weak ones. But password management is a half measure when it comes to security. The real action is in eliminating passwords altogether.
New forms of authentication will finally let us get rid of passwords for good. When I got my new Android phone, it asked me if I wanted to use a PIN or a biometric retinal scan as a login. I went with the PIN, but maybe the next time I will try something more modern. Biometrics are unique, but they can also be hacked. Just about any system, can be broken into if enough effort is put into it, as where there is a will, there is a way. Modern AI algorithms can be used to generate fingerprints, which can deceive fingerprint scanners. A biometric scan method is easier, as you don’t have to remember your face and they tend to be more secure.
Enterprise-oriented companies like Okta and Duo, as well as personal identity providers like Google, offer ways for people to log in to apps and services without having to enter a password. Apple’s facial recognition system has taken mainstream. Most notably, Microsoft announced in March 2021 that some of its customers could go completely passwordless, and it followed up in September by telling people to delete their passwords altogether. In the future, you will go to log in to a site or fire up an app, and instead of being asked to enter a password you get a prompt to enter a six-digit code from your authenticator app, tap a notification on your phone, or click a link sent to your email, or maybe you just need to raise your phone to your face. There will be no more typing in a bunch of characters and symbols you have to recall, write down, or store in a database.
You can respond to this prompt by telling a story about when you got hacked, or when you forgot your password, or what you think about passwords in general.