NCSAM/2011–Post 1–Write Down Your Passwords
October is National Cyber Security Awareness Month – and as with all things “Cyber”, I deplore the term. But I like the idea.
So, I’m going to try to post something short and pithy to increase cyber awareness every day this month.
I’ll try to make each Monday’s post a little bit controversial, by giving it a topic that’s often hotly debated. So here’s today’s topic:
Write down your passwords
OK, so your corporate security policy probably forbids this, and I would certainly never recommend that you go against corporate security policy. That can get you in trouble.
However, for your personal passwords, I would suggest writing them down. Just be careful not to leave them out and about in random places, like stuck to your monitor, or the underside of your keyboard tray.
We all have grown used to the idea of keeping small pieces of paper out of the hands of other people. I have a portable device for this purpose (wallet), and a home-based server for storing larger pieces of more important paper (safe), plus a “cloud” solution where the storage of small pieces of paper away from others is managed for me (safe deposit box / bank).
Others may suggest storing your password in an electronic form, using some kind of password “safe”. That’s fine, if you understand the storage model and encryption in use, or you have a smart and savvy friend who can recommend one to you. Otherwise, stick with a security technique you understand and which has worked for you for years.