Password management is often undertaken through the use of a password manager, a software utility that assists in generating and retrieving complex passwords, generally storing them in an encrypted database. Some password managers will calculate strong passwords randomly, or on-demand.
Password managers may blur the lines between system software and application software but, for the sake of categorization, any software designed to generate or help manage computer passwords will be appropriate for this category.
Most often, password managers are installed software applications, although password management may also be built into the operating system. As much of our computing is stored in the cloud today, password managers may also be online services that are accessed through web portals. The task may also be performed through locally accessed hardware devices that serve as keys.
Commonly, password managers are in the form of applications stored on the user's personal computer, smartphone, or mobile device. These applications can be offline, its database stored independently and locally on the same device as the password manager, or it might offer or even require a cloud-based approach, in which the password database is independent of the file hosting service, stored remotely, but handled through software that is installed on the user's computer. Some offline password managers don't require Internet permission, preventing leakage of data due to the network.
Fully web-based password management is a site-based version of the traditional desktop-based password manager. An advantage of an online password manager is that it is independent of any particular computer or device, as they can generally be accessed through any computer with a web browser and Internet connection, as there is no need to install software. There is also less risk of losing passwords due to theft or damage to a specific computer device, although the same risk may exist for the server used to store the passwords, although a web-based password management company might be more likely to ensure that backups are done regularly. A possible disadvantage is that the user would need to trust a remote hosting site and keylogger, particularly given the prevalence of cyberattacks.
Hardware solutions may use security tokens, in which a locally-accessible hardware device, such as a smart card or secure USB flash device, is used to authenticate a user in lieu of - or in addition to - a traditional text-based password. Data stored in the token is usually encrypted to prevent unauthorized reading of the information stored there. Token services may also include software installed on the PC, as well as the hardware, and drivers used to properly read and decode the data.
Many computer operating systems today include user authentication systems that use facial recognition or fingerprint identification, and this form of system software would be appropriate here, as well. Whatever the form it takes, any software used to manage passwords, or to authenticate users, may be included here.
Recommended Resources
Developed by AgileBits, the multi-platform password manager creates a virtual vault in which to store various passwords, software licenses, and other sensitive information. By default, this encrypted vault is stored on the company’s servers for a monthly fee, although they may also be stored on the user’s computer. The application may also be configured so that files are synchronized through Dropbox, local WiFi, iCloud, or through the company’s paid, subscription-based server sync service.
https://1password.com/
Founded in 2009, Dashlane is a cross-platform (macOS, iOS, Windows, Android) proprietary password manager and digital wallet application that uses a business model that offers two premium subscription tiers and a more limited free offering, each of which is compared side-by-side, along with monthly prices and other details. An overview of how the service works is presented, including its business plan, whose pricing is based on the number of users.
https://www.dashlane.com/
A cross-platform password management application, Enpass features client-side encryption, using SQLCypher, to encrypt the keychain file locally with a user-defined master password, and includes cloud synchronization of the keychain through several options. A free option is offered, along with a subscription-based option, and a one-time purchase, each of which is compared side-by-side. The application’s security measures and support options are discussed, and a user forum is included.
https://www.enpass.io/
Created by Keeper Security in 2009, the password manager application and digital vault stores website passwords, financial information, and other sensitive documents, using encryption, zero-knowledge architecture, and two-factor authentication. Offering Enterprise, Business, Personal, Family, and Student options, its features and prices are published to the site, along with an overview of its security measures, support options, business sales, and contacts.
https://www.keepersecurity.com/
Available for Mac computers as well as for several Linux distributions, Pass was inspired by the standard Unix password manager, using a command-line interface, and GnuPG for encryption and decryption of stored passwords, while encrypted passwords are stored in separate files, and can be organized through the operating system’s filesystem. Available under the terms of the GNU General Public License, instructions for downloading and setting it up are given.
https://www.passwordstore.org/
Offering users the option of a cloud-based subscription or a self-hosted edition, a company’s passwords can be stored in protected virtual vaults, allowing collaboration between members of a company or team, the management of user rights, change tracking, and security monitoring. Critical data is encrypted in a browser using a unique master password that cannot be decrypted from the server-side. The application is available in web or mobile versions or an on-premise edition.
https://passwork.me/
Offering password recovery software for Windows-based computers, PCUnlocker promises a 100% success rate in recovering lost or forgotten Windows passwords, including the Administrator password. Other features offered by the software include bypassing Windows user passwords without overwriting the old passwords, unlocking Windows accounts that have been disabled, locked, or expired, and others, which are highlighted here, along with its support options and affiliate program.
http://www.pcunlocker.com/
