My rule: If I can’t easily write nor remember a daily password, it is crap. My strong passwords are kept in a offline password manager, which has a relatively weak master password in the vein of “R!seaboveit@ll”. Not ideal, but at least a human can type it.
The real danger is going to be websites leaking or sharing the individual password it is given. So long as no one knows your (offline) manager’s pass, the threat can be cordoned off. Unfortunately, we can expect the integration of AI into OS ecosystems to make that method vulnerable. Say, for example, Microsoft’s Copilot or Google’s Android.
My rule: If I can’t easily write nor remember a daily password, it is crap. My strong passwords are kept in a offline password manager, which has a relatively weak master password in the vein of “R!seaboveit@ll”. Not ideal, but at least a human can type it.
The real danger is going to be websites leaking or sharing the individual password it is given. So long as no one knows your (offline) manager’s pass, the threat can be cordoned off. Unfortunately, we can expect the integration of AI into OS ecosystems to make that method vulnerable. Say, for example, Microsoft’s Copilot or Google’s Android.