#ShowerThought the very existence of password managers seems like a sign that we're doing computer security wrong.
Let me unpack that one a bit. Keys work because users don't have to memorize the shape of every one of their dozens of keys, and recall every detail of them blindfolded every time they need to unlock stuff. They just need to be able to recognize the right key from the set on their keyring. Nothing sensitive is given away if they can't, and just try them all one by one. The key does all the important memorizing about how to open the lock it goes with.
Everything about how computers are set up and used has changed since the invention of passwords, except that we still secure almost every kind of user identification with passwords. I think we need to take a step back, and completely rethink what we're trying to achieve with passwords and password managers, from first principles.
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!