A New Approach To Passwords Security

Strong Unique Passwords Critical To Stay Safe Online Strong Unique Passwords Critical To Stay Safe Online

A New Approach To Passwords Security

Strong Unique Passwords Critical To Stay Safe Online Strong Unique Passwords Critical To Stay Safe Online

Passwords are the keys to your digital world

Passwords have become central to our lives. They are the keys that open the front door to our digital world, from our bank accounts to our communication accounts, our entertainment accounts to our social accounts.

While cyber breaches have increased by 75% in the last two years, Verizon reported 81% were linked to weak, reused or stolen passwords in 2017. It can go like this: a social site, hotel server, telecom service gets breached, or company staff falls victim of a phishing attack. With credentials like name, login and password, hackers can now try combinations or variations from records easily found on the dark web, onto services that most people use. As major data breaches are now recurrent, creating strong unique passwords for each account has become a critical step to stay safe online, while enabling two-factor authentication should be done whenever possible.

Unfortunately in the space of a few years, instead of needing 2-3 passwords, we now need 80-90+ passwords. Meanwhile strong passwords carry an inherent difficulty: they are hard to remember. Caught between the sheer number of passwords and the difficulty to remember them, people have increasingly looked for password managers for help.

Choosing the best password manager

There are two kinds of password managers on the market. In recent years, cloud password managers have become popular. You only need to remember a master password. Once you type in your master password, you can access all your passwords which are stored on the cloud. While it is convenient, the risk is the same as if you had one single key that opens everything in your physical world. Because your passwords are now centralised behind a single password, that password becomes your single point of failure. If you forget that master password, lose it, or it gets stolen, you risk losing everything. The other important issue to note is that you store your passwords in the same servers as millions of other people. Not only those constitute a targeted prize for cybercriminals and hackers, but if and when they get hacked, millions of people are instantly affected.

More recently, we found another way to solve the identity and access management headache. It starts with a radically different approach: rather than centralising passwords, the solution is based on a fully distributed risk-model. Instead of storing passwords on the cloud, encrypted passwords are saved locally on the device. Instead of storing all passwords behind a master password, each password is stored under one, two or three levels of security depending on their sensitivity. And instead of remembering a master password, each user accesses their passwords with a unique combination of finger print, pin, lock pattern, face ID and voice passphrase. Simply put, if your account email and password are leaked in a company data breach, your other accounts remain unaffected.

A trip back in time

If necessity is the mother of all invention, a trip back in time inspired the solution. A few years ago while visiting the ancient Greek city of MyCena, a simple logic applied in the Late Bronze Age caught my attention. The MyCena eans had built their city inside three concentric walls of protection: the first gate protected the city, the second gate the garrison, the third gate the king. Applying that logic, MyCena Password Fortress mobile application was launched with the mission to make passwords security as simple as possible. First the app helps you generate a strong unique password for each account, removing the pain of creating a new one yourself. Then you choose to save the password in Bronze, Silver or Gold level, our three levels of security. That’s all! Your password is saved, encrypted on your device, not on the cloud. You – and only you – can access your passwords quickly and safely. MyCena can also be used on multiple devices. And if you ever lose your device, a thief couldn’t access your passwords without your identifications including your biometrics, while you can simply reload your passwords onto a new device from an encrypted backup. In both an innovative and straightforward way, MyCena restores passwords original function as an identity proof: only the person with the right password for that particular account can see what’s behind it.

Protecting our critical data

Even though everyone needs to protect their passwords for their personal and family safety, MyCena primarily targets organisations holding sensitive information where a data breach would affect us all, such as defence, police, government, energy, water, utilities, infrastructure, technology, banking, healthcare, pharmaceuticals, transport, law…

MyCena is a mobile application for smartphones and tablets, downloadable from the Appstore or Google Play. Companies can sign up for a free trial on https://mycena.co