3. làm thế nào tạo và duy trì mật khẩu bảo mật
TRANSCRIPT
-
7/24/2019 3. Lm Th No To V Duy Tr Mt Khu Bo Mt
1/3
Xut bn Security In A Box(https://info.securityinabox.org)
Trang ch> Bn in PDF > Bn in PDF
3. Lm thno to v duy tr mt khu bo mtC rt nhiu dch vbo mt cho php chng ta p dng cng nghkthut smt cch ddng vo nhng lnh vcquan trng. Tvic ng nhp vo my tnh, gi v nhn thin tti vic m ha[1]v n giu nhng dliu ti mt,
u i hi chng ta phi ghi nhmt mt khu. Nhng cm t, cu, hay chui k tln xn c gib mt ny thngl ro cn u tin, i khi l duy nht ng gia dliu ca bn v nhng kt m mun c, sao chp, sa i hayph hy chng d khng c scho php ca bn. C rt nhiu cch m ai c thd bit c mt khu ca bn,tuy nhin bn c thngn chn hu ht nhng cch bng vic p dng mt ssch lc cthcng nhsdngmt cng ccsdliu bo vmt khu[2], nhphn mm KeePass[3].
Tnh hung cbn
Mansour v Magda l hai anh em mt t nc ni ting rp. Hc mt trang web c nhn ni hcng bmt cchnc danh nhng xm phm v cc chin dch vnhn quyn nhm tc ng thay i chnh tr. Magda gn y c gngtruy cp vo hp thc nhn ca mnh nhng pht hin ra rng mt khu ca c bthay i. Sau khi thit lp limt khu ca mnh, c c thtruy cp vo hp thnhng khi mhp thn, c pht hin rng mt sthmi bnhdu l bc. C nghi ngrng c kni gin vi ng cchnh tr d bit c mt khu m c dng chung chonhiu ti khon truy cp trang web khc nhau. C stm gp Mansour, ngi c t kinh nghim vmy tnh hn c trao i vtnh hnh v cp iu c quan ngi.
Nhng iu bn c thhc c tchng ny
Cc thnh phn to nn mt mt khu bo mt
Mt vi mo gip nhnhng mt khu di v phc tp
Sdngphn mm qun l mt khu[2]KeePass[3]lu gicc mt khu thay v phi ghi nhchng
La chn v duy tr mt khu bo mt
Nhn chung, khi bn mun bo vmt thg , bn kha n bng mt chic cha kha. Nh, xe t hay xe p u cnhng chic cha kha vt l; nhng tp c bo vc nhng cha kha m ha[1]; thnh bng c cc m c nhn; vcc ti khon thin tc cc mt khu. Tt cnhng kha , vt l hay in tu c mt im chung: chng mnhng kha tng ng nhnhau khi nm trong tay bt k ai. Bn c thci t cc tng la tin tin, cc ti khonhp thc bo mt, hay cc a c m ha[1]. Nhng nu mt khu ca bn khng mnh, hoc nu bn n lt vo tay kxu, chng cng khng gip g cho bn.
Cc cu thnh ca mt mt khu mnh
Mt mt khu mnh cn phi kh cho mt chng trnh my tnh mun ph.
To mt khu di: Mt mt khu cng di th cng t khnng chng trnh my tnh c thph c trongkhong thi gian ng kcho php. Bn nn to mt khu vi di tmi k ttrln. Nhiu ngi thng sdng nhng mt khu gm nhiu hn mt t, c hoc khng c cc trng gia cc t, thng c gi l ccon mt khu. y l mt tng hay, mt khi chng trnh hay dch vbn sdng cho php bn chn nhngmt khu di.
To mt khu phc tp: Ngoi di, phc tp ca mt khu cng gip chng li cc phn mm ph khatm cch d on thp cc k t. Bt ckhi no c th, bn lun nn sdng cc k thoa, k tthng, svcc biu tng, v dnhdu gch ngang trong mt khu ca mnh.
Mt mt khu cn phi kh ngi khc c thtm ra c.
Cn thc t: Nu bn phi ghi mt khu ca mnh xung u v bn khng thnhc n, bn c thphii mt vi mt lot cc nguy cddng bmt mt khu vo tay nhng ai c thnhn vo bn lm vic hay lnvo nh, mv hoc thm ch lc thng rc bn ngoi vn phng lm vic ca bn. Nu bn khng thngh ra mtmt khu di v phc tp nhng vn c thghi nhc ddng, mc Ghi nhmt khu bo mt[4]bn diy c thgip phn no. Nu khng th bn vn cn to mt mt khu an ton, nhng bn c thcn ti
mtphn mm qun l mt khu[2]nhKeePass[3]. Cc loi tp c mt khu bo v, bao gm ccc ti liuMicrosoft Word u khng ng tin cy cho mc ch ny, do a phn chng u ddng bph trong vi giy bicc cng cc sn tInternet.
Khng to mt khu cha nhng yu tc nhn: Mt khu ca bn khng nn cha nhng yu tlin quan tic nhn bn. Khng nn chn nhng thay nhng on da trn nhng thng tin nhhtn, schng minh, sin thoi, tn con, tn vt nui, ngy sinh ca bn hay nhng thtng tm mt ngi khc c thd ra mt
https://info.securityinabox.org/vi/chuong_3_2https://info.securityinabox.org/vi/glossary#Encryptionhttps://info.securityinabox.org/vi/glossary#Secure_password_databasehttps://info.securityinabox.org/vi/glossary#Secure_password_databasehttps://info.securityinabox.org/vi/glossary#Secure_password_databasehttps://info.securityinabox.org/vi/glossary#Secure_password_databasehttps://info.securityinabox.org/vi/glossary#KeePasshttps://info.securityinabox.org/vi/glossary#KeePasshttps://info.securityinabox.org/vi/glossary#KeePasshttps://info.securityinabox.org/vi/glossary#Secure_password_databasehttps://info.securityinabox.org/vi/glossary#Secure_password_databasehttps://info.securityinabox.org/vi/glossary#Secure_password_databasehttps://info.securityinabox.org/vi/glossary#KeePasshttps://info.securityinabox.org/vi/glossary#KeePasshttps://info.securityinabox.org/vi/glossary#Secure_password_databasehttps://info.securityinabox.org/vi/chuong_3_2https://info.securityinabox.org/vi/glossary#Encryptionhttps://info.securityinabox.org/vi/glossary#Encryptionhttps://info.securityinabox.org/vi/glossary#KeePasshttps://info.securityinabox.org/vi/glossary#Secure_password_databasehttps://info.securityinabox.org/vi/glossary#KeePasshttps://info.securityinabox.org/vi/glossary#Secure_password_databasehttps://info.securityinabox.org/vi/glossary#Encryptionhttps://info.securityinabox.org/vi/printpdfhttps://info.securityinabox.org/vihttps://info.securityinabox.org/ -
7/24/2019 3. Lm Th No To V Duy Tr Mt Khu Bo Mt
2/3
khu bng cc tm hiu cc thng tin vc nhn bn.
Gib mt: Khng nn lthng tin mt khu vi bt k ai trkhi iu l thc scn thit. V nu bn phichia smt khu ca mnh vi mt ngi bn, mt thnh vin trong gia nh hay ng nghip, bn cn thay i nsang mt mt khu tm thi, chia smt khu tm thi ny v thay i li khi xong vic. Thng thng, c ccgii php thay thvic chia smt khu, nhl to hai ti khon ring bit cho tng c nhn cn truy cp. Gibmt mt khu cng c ngha l bn cn xem liu c ai c thnhn tpha sau bn lc bn g mt khu hay dtm trong csdliu mt khu[2]ca bn.
Mt mt khu c chn sao cho nu blt vo tay ai th thit hi l nhnht.
Mt khu ring: Trnh vic dng chung mt khu cho nhiu hn mt ti khon. Nu khng th ai bit c mtkhu ca bn c thtruy cp nhiu thng tin mt ca bn. iu ny rt ng v c nhiu dch vrt ddng bphmt khu. Ly v d, nu bn sdng chung mt khu cho ti khon ng nhp Windows v ti khon thin tGmail. Ai c thtruy cp my tnh ca bn d ra mt khu ng nhp u tin v sdng n truy cp voti khon kia. Cng l do tng t, iu nn trnh l quay vng sdng mt khu gia cc ti khon khc nhau.
Thay i mt khu: Lun thng xuyn thay i mt khu ca bn, tt nht l csau ba thng thay i mt ln.Nhiu ngi thng gn cht vi mt mt khu no v khng bao githay i n. y l mt iu nn trnh .Bn ginguyn mt mt khu cng lu, ngi khc cng c chi d ra n. Thm na, nu ai c thsdngmt khu nh cp ca bn ly trm thng tin m bn khng hay bit, hstip tc thc hin c nhvycho n khi bn thay i mt khu.
Mansour: Nu anh tin tng ai ? Th vic ni cho ngi mt khu cng c, phi khng?
Magda: Trc ht, chv anh tin tng ai vmt khu ca mnh, khng nht thit c ngha l anh tin tng hsgimt khu ca anh cn thn, ng khng no? Ngay ckhi ti khng dng mt khu ca anh vo vic xu, ti c thsghi n xung u v nh mt hay i loi nhvy. c thl l do em ang gp vn hin ti. Thm na, ykhng phi l vn lng tin. Nu anh l ngi duy nht bit mt khu ca mnh, anh khng phi ph thi gian licho ai nu ti khon ca anh bt nhp. Ngay lc ny, ly v d, em cm thy kh chc chn rng ai d on ramt khu ca mnh v em khng bao gighi n xung hay tit lcho ai c.
Ghi nhv lu gimt khu bo mtXem li danh sch cc hng dn pha trn, bn c thbn khon lm sao ai khng c mt tr nhin tli c thghi nhc nhng mt khu di, phc tp v khng mang ngha g m khng phi ghi chng xung u . Tmquan trng ca vic sdng cc mt khu khc nhau cho nhng ti khon khc nhau khin cho vic ny cng kh khn
hn. Tuy nhin, c mt smo c thgip bn to ra nhng mt khu ddng ghi nhnhng cc k kh d on,thm ch i vi nhng chuyn gia c trang bphn mm ph kha tin tin. Bn cng c thm sla chn lu trccmt khu sdng phn mm qun l mt khu KeePass[3]c to ring cho mc ch ny.
Ghi nhcc mt khu bo mt
Vic sdng cc loi k tkhc nhau khi to mt khu rt quan trng. iu ny c tht c theo nhiu cch khcnhau:
Thay i vic sdng chhoa, v d: TN tI khNg pHi l NGI ViP
Thay thgia sv k t, v d: ch1 l4m vi3c v4 k50ng vu1 ch1
Sdng nhng k tc bit: v d: c@(he1Rnthery3
Sdng trn ln nhiu ngn ng, v dTi loVe Ni, You aI wo Ma?
Tt cnhng cch ny c thgip bn tng kh ca mt mt khu ng ra l kh dd on, v cho php bn lachn mt mt khu c bo mt cao m khng phi tbvic n c thghi nhddng. Mt ssthay th(nhvicsdng s0 thay cho cho hay k t@ thay cho cha) tlu c a vo trong cc phn mm ph kha, tuy nhinvic dng chng vn l tng tt. Chng lm tng thi gian m cc cng c cn ph mt khu ca bn v trongtrng hp khng c trang bnhng cng cloi ny th vic d on sgp kh khn.
Cc mt khu cng c thsdng u im ca cc cch thc ghi nhgi nhtruyn thng[5], nhphng thc sdng tu tin ca mi ch. iu ny cho php cc on di trthnh nhng chging nhngu nhin v rt phctp:
To be or not to be? That is the question trthnh 2Bon2B?TitQ
We hold these truths to be self-evident: that all men are created equal trthnh: WhtT2bs-e:taMac=
Are you happy today? trthnh: rU:-)2d@y?
Trn y chl mt sv dgip bn tc nhng phng n ring m ha cc tv cu khin chng trlnphc tp nhng li dnh.
https://info.securityinabox.org/vi/grossary#Mnemonichttps://info.securityinabox.org/vi/glossary#KeePasshttps://info.securityinabox.org/vi/glossary#Secure_password_database -
7/24/2019 3. Lm Th No To V Duy Tr Mt Khu Bo Mt
3/3
Ghi nhmt khu mt cch an ton
Chmt cht sng to c thgip bn ghi nhtt ccc mt khu ca mnh, scn thit ca vic thay i chng mtcch thng xuyn c thkhin bn khng sng to kp. C ththay thbng cch bn to ra cc mt khu c tnh ngunhin v an ton cho hu ht cc ti khon ca bn v tbvic phi ghi nhtt cchng. Thay vo bn c thlu trchng trong mt csdliu mt khu bo mt bng m ha[2], nhphn mm KeePass[3].
Thc hnh: Hy bt u vi Hng dn sdng KeePass [6]
Tt nhin, nu bn sdng phng php ny, mt iu rt quan trng l bn to v ghi nhmt mt khu c tnh bom
t r
t cao dng cho KeePass[3], hay b
t k cng c
l
u tr
m
t kh
u no khc m b
n s
dng. B
t k lc no c
nnhp mt khu cho mt ti khon no, bn c thtm thy n v chphi sdng duy nht mt mt khu chnh, iu nykhin cho vic tun theo cc hng dn trn trnn ddng hn.
KeePass[3]l phn mm chy khng cn ci t, ngha l bn c thlu csdliu mt khu trong mt thnhUSBlu ng trong trng hp bn cn tm mt mt khu trong khi bn di chuyn khi chic my tnh chnh ca mnh.
Tuy y c thl sla chn tt nht cho nhng ai cn qun l mt slng ln cc ti khon, c mt snhc imkhi sdng phng php ny. u tin l vic bn c thmt hay lxa i bn duy nht ca dliu mt khu, bn skhng c cch no truy cp vo cc ti khon bng nhng mt khu ny na. Do vy vic sao lu csdliu KeePass[3]l v cng quan trng. Xem Chng 5: Lm sao khi phc dliu bmt[7]bit thm vcc phng thcsao lu dliu. Rt may mn l csdliu mt khu ca KeePass c m ha nn bn khng phi lo lng nu lnh mt thnhUSB hay dphng c cha bn sao lu ca n.
Nhc im ln thhai thm ch c thnghim trng hn. Nu bn qun mt mt khu chnh mKeePass[3], khngc cch no khi phc li c n hay ni dung ca csdliu mt khu. V vy, hy chc chn rng bn chn mtmt khu gm chai yu t: mnh v dnh!
Mansour: i mt pht, Nu KeePass sdng mt mt khu chnh qun l tt ccc mt khu khc th lm sao n libo mt tt hn l vic sdng chung mt mt khu cho tt ccc ti khon ca mnh? anh l nu mt kxu no bit c mt khu chnh th hn cng struy cp vo c mi th, ng khng?
Magda: y l mt suy ngh hay, v anh ng khi ni vic bo vmt khu chnh l v cng quan trng, nhng y cmt sim khc nhau cbn. Trc ht, kxu ny khng chcn ring mt khu ca anh, m cn cn ctp csdliu KeePass na. Nu anh chdng chung mt mt khu cho tt ccc ti khon ca anh, khi hn schcn nmi mt khu m thi. Hn thna, chng ta bit rng KeePass c thit kc tnh bo mt rt cao, phi khng? trongkhi , cc chng trnh hay trang web c thl ngc li. Mt sc kh hn cc chng trnh hay trang web khc, vanh khng mun ai tn cng vo mt trang web c bo mt thp v sdng chnh mt khu hn d ra c truy cp cc chng trnh v trang web c bo mt cao hn. V cn mt iu na, KeePass khin cho vic thay imt khu chnh ddng hn nhiu nu anh thy cn thit. Em ng lsmay mn hn! Em phi dnh cngy hm naythay i tt cmt khu ca mnh.
c thmbit thm vmt khu bo mt, xem chng Password Protection [8]v How long should my password be? [9]Phlc cun Digital Security and Privacy for Human rights Defenders [10].Wikipedia gm nhng bi vit hu ch Passwords [11], Guidelines for password strength [12], v password cracking [13].
URL ngun (c tm thy vo ngy 04/11/2015 - 03:12): https://info.securityinabox.org/vi/chuong-3
Cc lin kt:
[1] https://info.securityinabox.org/vi/glossary#Encryption[2] https://info.securityinabox.org/vi/glossary#Secure_password_database[3] https://info.securityinabox.org/vi/glossary#KeePass[4] https://info.securityinabox.org/vi/chuong_3_2[5] https://info.securityinabox.org/vi/grossary#Mnemonic[6] https://info.securityinabox.org/vi/keepass-main[7] https://info.securityinabox.org/vi/chuong-5[8] http://www.frontlinedefenders.org/manual/en/esecman/chapter2_2.html[9] http://www.frontlinedefenders.org/manual/en/esecman/appendix_d.html[10] http://www.frontlinedefenders.org/manual/en/esecman[11] http://en.wikipedia.org/wiki/Password[12] http://en.wikipedia.org/wiki/Password_strength[13] http://en.wikipedia.org/wiki/Password_cracking
https://info.securityinabox.org/vi/chuong-3http://en.wikipedia.org/wiki/Password_crackinghttp://en.wikipedia.org/wiki/Password_strengthhttp://en.wikipedia.org/wiki/Passwordhttp://www.frontlinedefenders.org/manual/en/esecmanhttp://www.frontlinedefenders.org/manual/en/esecman/appendix_d.htmlhttp://www.frontlinedefenders.org/manual/en/esecman/chapter2_2.htmlhttps://info.securityinabox.org/vi/glossary#KeePasshttps://info.securityinabox.org/vi/chuong-5https://info.securityinabox.org/vi/glossary#KeePasshttps://info.securityinabox.org/vi/glossary#KeePasshttps://info.securityinabox.org/vi/glossary#KeePasshttps://info.securityinabox.org/vi/keepass-mainhttps://info.securityinabox.org/vi/glossary#KeePasshttps://info.securityinabox.org/vi/glossary#Secure_password_database