Nowadays, most people use password managers (hopefully). However, there are still some passwords that you need to memorize, like master password (for a password manager), phone lock, wifi password, etc.

Security wise, can passphrase reach the strength of a good password without getting so long that it defeats the purpose of even using it?

  • Schlemmy
    link
    fedilink
    arrow-up
    2
    ·
    8 months ago

    Those government id based login methods are quite common and very secure. Belgium has a system that used your ID, your phone number and your phone to verify your login. A lot of EU banks have been using a OTP generated by a dedicated hardware that looks like a tiny calculator. The Netherlands has a dedicated app that is verified by your government id and that uses a qr to verify your identity.

    • Wes_Dev
      link
      fedilink
      arrow-up
      1
      ·
      8 months ago

      They can be good quality, yeah. But I’m more worried about having to basically present a digital-equivalent of a driver’s license if I want to sign up for Netflix, or watch porn, or order food. And if ID system routes every request to a central location first, then you get stuck with de-facto tracking on everything you ever do, no matter how good the company’s privacy record is. That’s what I meant by creepy.

      • Schlemmy
        link
        fedilink
        arrow-up
        2
        ·
        8 months ago

        Thank God for GDPR. That would be impossible in the EU. ID’s can only used in very specific cases that are detailed in the law.