"If you want to avoid having your identity stolen, use long passwords that contain digits, punctuation and no recognizable words. Make up a different password for every website. And change all of your passwords every 30 days."
Have these security pundits ever listened to themselves?
That advice is clearly un-followable. I currently have account names and passwords for 87 websites (banks, airlines, blogs, shopping, email, Facebook, Twitter). How is anyone supposed to memorize 87 long, complex password strings?
So most people use the same password over and over again, and live with the guilt.
There are solutions. Most Mac and Windows Web browsers now offer to memorize passwords for you. But that feature doesn't work on all websites, and is generally of little help when you pick up your phone or tablet.
The only decent solution is to install a dedicated password memorization program (like Roboform, KeePass, LastPass, 1Password, and so on). Recently, one of the best was improved: Dashlane, now at 2.0. It's attractive, effective, loaded with timesaving features and available for Mac, Windows, iPhone and Android — and it's free.
Installation is quick. Dashlane works in Safari, Chrome, Internet Explorer and Firefox. It can import existing password "vaults" from rival programs.
Dashlane has two primary features. First, yes, it's a password memorizer. Every time you type your account name and password into a Web page and press enter, Dashlane pops up, offering to memorize that information and fill it in the next time.
It also offers to log you in — not just to enter your password, but also to click "log in" for you. In effect, Dashlane has just removed the login blockade entirely. When you go to Facebook, Twitter or Gmail, you just click your bookmark, smile at the briefest flash of the login screen and arrive at the site.
Because Dashlane is now storing and auto-entering your passwords, you're now free to follow the security experts' advice. You can make up long, unguessable passwords — a different one for every website, because you don't have to remember any of them. Each time you sign up for a new account, Dashlane offers to make up such a password for you, and then, of course, to memorize it.
Dashlane's second huge feature is even more amazing. It can also fill in other kinds of website forms: your name, address, phone number, and even your credit card information.
Dashlane notes that it doesn't ever see your passwords or your credit card information. They're all stored on your own computer, encoded by the AES-256 encryption method, an open-source standard approved by the National Security Agency. In version 2.0, you have the option of using two-factor authentication — fancy lingo for an extra layer of security.
But Dashlane doesn't work in the built-in browser on the iPhone. Instead, it offers its own little iPhone browser.