Differences

This shows you the differences between two versions of the page.

--- security_presentation [2022.10.09 14:40] – Steve Isenberg
+++ security_presentation [2022.10.09 15:40] – [Next: Live demo of KeePass] Steve Isenberg
@@ Line 94: / Line 94: @@
 //All of these offer login and text note storage in a secure vault protected by your master password, and can generate (and store) strong passwords.//
-//Following data updated 10/9/2022//
+//Following data updated 10/9/2022.  There are MANY other options, these are a few.  You should study all of the features and drawbacks of any option you consider or select.//
 ^Manager^Free version.  ^Paid version.  ^Cost.  ^platforms^
 |[[https://www.lastpass.com/|www.lastpass.com]] |Access on one device type (computer or mobile) |1GB encrypted cloud storage\\ Multifactor Authentication (MFA)\\ Contingency plan (loved one access in emergency) |Free for one device type; $36/yr 1 user, $48/yr 6 users (group and share items, family manager)|Browser based. Win, Mac, Linux, Mobile|
@@ Line 100: / Line 100: @@
 |[[https://keepersecurity.com|keepersecurity.com]]|no free option|(Personal) no limits on storage, devices, sharing; (family) 5 vaults, 10GB secure storage|Personal $35/yr, Family $75/yr|App: Mac, Windows, Linux, iOS, Android; Browser extension|
 |[[https://www.roboform.com/lp?frm=everywhere-offer&rec=TechRadar&dc=TR30&affid=a6277|www.roboform.com]]|one device |sync across devices, cloud backup, web access. Family plan is 5 users.|Personal: $16.68/1yr, $45.14/3yr, $69.60/5yr\\ Family: $33.40/1yr, $90.20/3yr, $139.30/5yr|Windows, Mac, iOS, Android, Linux, Chromebook, Browsers|
+|[[https://bitwarden.com/|bitwarden.com]]|Unlimited pw, devices | 2FA, emergency access, share w/1-6 people | $10/yr one user, $40/yr up to 6 users |Windows, Mac, Linux, iOS, Android, Browsers|
+|[[https://1password.com/]]|no free version, only paid, 2wk free trial|unlimited pw & devices, 1GB storage, 2FA.|Individual: $36/yr, Families (5 family members): $60/yr|Mac, Win, Linux, iOS, Android, Browsers|
+|[[https://nordpass.com/]]|unlimited pw, notes also, credit cards|emergency access |Premium $24/yr, Family (6 accts) $60/yr|Win, Mac, Linux, Android, iOS, Browsers|
+|[[https://keepass.info/]]\\ [[https://keepassxc.org/download/|KeePassXC]]|* Can run from USB\\ * Many customizable options\\ * A little intimidating? You judge.|FOSS((FOSS=Free, Open-Source Software)) - there is no paid version -- all features in free version\\ Many ports, with different features and UI|Note, no cost. Does not provide place to store the Password Safe, that's up to you|Windows, Android, iPhone/iPad, Mac, Chromebook, Blackberry, Linux, and more|
+KeePassXC is a KeePass port, see Tech Radar's review: [[https://www.techradar.com/reviews/keepassxc]]. It's free but accepts donations.
-|[[https://bitwarden.com/|bitwarden.com]]|* passwords file kept online\\ *<fs small>(but you can install it on your own server)</fs>\\ *one file, share w/another | 1GB encrypted storage | $10/yr one user, $39.96/yr up to 6 users |Windows, Mac, Linux, iOS, Android|
+Refs:
-|[[https://keepass.info/|keepass.info]]|* Can run from USB\\ * Many customizable options\\ * A little intimidating? You judge.|FOSS((FOSS=Free, Open-Source Software)) - there is no paid version -- all features in free version\\ Many ports, with different features and UI|Note, no cost. Does not provide place to store the Password Safe, that's up to you|Windows, Android, iPhone/iPad, Mac, Chromebook, Blackberry, Linux, and more|
+  * [[https://www.pcmag.com/picks/the-best-password-managers]]
-|Others?|
+  * [[https://www.cnet.com/tech/services-and-software/best-password-manager/]]
+  * [[https://www.techradar.com/best/password-manager]] a good site for reviews of offerings
+  * [[https://www.techradar.com/reviews/keepassxc]] TechRadar's review of KeePassXC
 ====Caveat====
@@ Line 134: / Line 141: @@
   * One password to remember
   * I can use long and complex passwords
+  * Can keep a history of past passwords
 Using a password manager:
-    * you can create quite long and complex passwords
+    * easy to create long and complex passwords
+    * you can use long and complex passwords
     * you can create secure passwords and not have to remember all of them
     * you only have to remember One password
+    * you can store your password file encrypted in multiple places including USB drives so it's unlikely to be lost
     * you have all of your important access information in one spot, the encrypted file
-      * (your next of kin would likely find this useful)
+      * //your next of kin would likely find this useful//
 ====More About KeePass====
 //Note that many of these features can be handled/provided by other password manager software, free and at cost//
@@ Line 180: / Line 190: @@
   * I use a DB entry to log changes
-    * "Last changed 20211201.2007" (Dec 2, 2021, 8:07pm)
+    * "Last changed 20221009.1817" meaning October 9, 2022 at 6:17pm
-    * Enter change(s) made, eg: "1201: updated CCS entry, new password Kohls"
+    * Enter change(s) made, eg: "0921: updated CCS entry, new password Kohls"
     * This I do manually
     * Helps me synchronize databases
@@ Line 187: / Line 197: @@
   * I use KeePass application to create new entries and login passwords
     * Passwords typically 14+ characters (upper/lower case and numbers)
-    * KeePass tells me if a password is/isn't secure
+    * KeePass tells me how secure a given password is
 Here is a possible password I might use: ''cqLbq2NHcuNmgU'' -- 14 characters, upper and lower case letters, and at least one number.  This one has entropy 82.06 which is deemed "good".
@@ Line 202: / Line 212: @@
 ====Next: Live demo of KeePass====
+on smi macbook
+  * open, select PasswordExample.kbdx pw=1234
+  * Save as CSV and look
+  * Save as HTML and look
+  * Database>Reports
 ====Questions and Answers====