Skip to main content

Chrome App Review: Password Hasher Plus

Every week, it feels like I read a new story about new schemes to get user password, or a new story about how a hacker got a password and heavily damaged someone else's life.  A few months ago,  I decided that I needed a new method to create and remember passwords.  Even though I followed the rules to create strong passwords and I kept a local password file, I didn't like it.  What happens if someone gets the password file?  What if I need a password but I can't get to the file?

First, I decided on my requirements.  I wanted an application that helped me create password using the following rules for creating a strong password:
  1. Do not use all or part of your username as a password.
  2. Do not use dictionary words as a password.
  3. Use the maximum amount of letters allowed by the website for a password, not the minimum.
  4. Include numbers and special characters if the option is available.
  5. Do not reuse passwords across multiple websites.
  6. Do not use your real name, nor the real names of anyone close to you (e.g. family members, pets, ...)
But I do not want the application to store the password itself anywhere.  I also wanted the application to work on my Android devices as well as my desktop.  

Second, I perused the Chrome Web Store.  I love this place - every time I look, I find more interesting apps there to try out.  Searching for "password" brought up a list of various apps, but I didn't find what I wanted until I got to Password Hasher Plus.

Password Hasher Plus is an app that creates password for you through a hashing algorithm using a master key, site tag (based on the URL), and a secret word.   The app also lets you set length that you want as well as the set of characters available to use for each password (numeric only, alphanumeric only, or alphanumeric and special characters).

After you install this app, when you log in to a website, you enter the secret word in the password field.  Password Hasher Plus then calculates your password, switching the contents of the password field to the new, hashed password.  Víolá!!  You have a new, unguessable password.

The key to all of this is the secret word.  You can use the same secret word for multiple websites, but you will still get unique passwords for each website because of the hashing algorithm.  That means you only need to remember one or two secret words to get strong passwords everywhere.


Comments

Popular posts from this blog

Wordless Wednesday: Dymaxion Car

By Supermac1961 from CHAFFORD HUNDRED, England - Type Dymaxion, 1933, CC BY 2.0  

We Now Interrupt this Blog For a Funeral

  The perfect gentle man  dog Last week, I received a terrifying phone call.  My son's dog, Kareem was hit by a car.  The entire situation does not bear repeating, because it was an unfortunate accident.  There was no way anyone without the ability to see the future could have prevented it. All Wednesday, we sat around on pins and needles as the status reports came in.  Kareem seemed to be okay; his front left leg wasn't working but didn't look broken.  Probably nerve damage that may or may not heal on its own.  His right eye was swollen - would he lose his eye? Kareem lasted for over 10 hours.  Then the call came in.  Kareem went into cardiac arrest. He died. Waiting for his daddy (my son) to come home Wednesday night was one of those times that demark a before and after time - an event that makes a lasting impression, creating an internal division in your personal history.  Before I had a grandpuppy named Kareem who loved it when I sang to him.  After ... well, after my f

Wordless Wednesday: Floating to the Wedding

Due to flooding, this couple floated to the temple in a large cooking pot. Alappuzha, Kerala, India @Shilpa1308/Twitter