I had my mind sort of blown last week. I was visiting my client’s home, doing some side IT work, when it came time to ask her the burning question every IT person hopes is known: what’s your password? My client is a sweet, mostly computer-literate woman in her 60s. She pulled out an address book (old skool – meaning, a physical book with pages) that was solely dedicated to password management. She went to ‘S’ to reference her SBCglobal account (haha) and there it was. No-nonsense and super easy (and that is why I love working for her)!
I stared at the book and said, “So, this is just for your passwords?” She said yes as she thumbed through the book, showing me how she put usernames, passwords, email addresses, website addresses and any other pertinent information underneath the corresponding letter. DUH. BOOM. MIND BLOWN.
Upon this new “discovery” I reflected upon how crappily I manage my really important junk. Let’s just say I don’t even use a locked excel spreadsheet. Then I thought, I need to get a [really cool-looking] address book STAT. But wait, I’m in IT. Shouldn’t I make this electronic? Or should I pay for an app to help me manage?
Obviously, the issue of security comes into play. How secure is her old-skool address book method? Maybe some other information you should know: She works from home. She leaves the book next to her computer for obvious reasons. The book really never leaves that spot. If you were to burgle her, would you think to look at or steal an address book? It’s disguised.
Maybe, here are some options. I say ‘maybe’ because, quite possibly like yourself, I need to try out all these methods first:
1) Get an old-skool address book. Leave it at home or in a safe. Underline the words “ADDRESS BOOK” 3 times so people think it’s an address book. Pretend to thumb through it when someone asks for your periodontist’s phone number. Wear a gray wig so people won’t wonder why you’re using one. Don’t show it to anyone. For your eyes only.
2) Use your existing email account’s address book, or open a new one for this sole purpose. Don’t name it mypasswords@gmail.com or thisisntreallyanaddressbookatall@gmail.com. Don’t forget what the password is to this account, or else you’re screwed. You can add the account to your phone and turn on the contacts portion only (or if you’re fancy, add the account and don’t turn on the contacts and THEN when you need access to your passwords, flip it on!)
3) Download an app (LastPass, RoboForm, or http://www.pcmag.com/article2/0,2817,2407168,00.asp, etc.) You can probably get by using the free version of these apps, but of course, that could also include ads, “Review this App” pop-ups, and shortage of storage, to name a few problems with freeware.
I have to ask the question again: what is secure? Maybe it depends on how you use it. But it’s better than a bar napkin shoved into your pocket…