Secure Ways to Store Passwords
In this chapter, I want to discuss a comparison of the main methods of password storage that I consider acceptable for everyday use. I will not consider storing passwords in the cloud and in the browser, text documents on the desktop, and notes near the work computer - I do not consider these methods safe. Additionally, I want to remind you that regardless of the storage method used, the password must be reliable.
The main requirements for a secure password storage method imply the resilience of passwords in situations where physical access or remote access to the owner's computer is obtained. Undoubtedly, with remote access, an attacker will obtain the passwords entered by the user; here, the main protection becomes two-factor authentication, and the task of the password manager is to prevent the leakage of other passwords that were not used during the period of remote access by the attacker.
Storing Passwords "in Your Head"
I also recommend storing some particularly important passwords in your head; however, there is an opinion that all passwords are better stored in memory. Certainly, if you can remember a password of 20-25 characters for each resource - keep it in your head. But, most likely, this is not the case.
I strongly do not recommend remembering a couple of passwords and using them everywhere. Firstly, a leak on one of the sites will lead to the compromise of passwords for several of your sites. Secondly, attackers are well aware of the habit of using one password across multiple resources and, upon obtaining an email/password combination, automatically check it across various resources.
Using a memorized password is permissible on all resources, but on the condition that there is a secret. For example, to this complex password, you add the first and last characters from the site address at the beginning and end. For instance, in your head, you keep the password lghiopRxMnn65£GhiLg; when using it on the Facebook site, you add the first and last letter from the site address after the first and before the last character of the password. As a result, for Facebook, you get the following password: lFghiopRxMnn65£GhiLkg. A small secret makes your memorized password unique for each site.