Okay.

See here’s the thing:

You have to remember:

  1. BIOS password (you’re supposed to set one, right? I mean… so your that sibling/roomate/kids/family doesnt mess around and replace your OS with a malicious OS)
  2. Full Disk Encryption password and then finally
  3. The user password

Like that kinds breaks my brain

Do y’all just put those in your password manager… then only have to remember

  1. Master Password to password vault and
  2. Phone lockscreen

Is this the “Standard Operating Procedure”?

But if you are paranoid and set a full alphanumeric password/passphrase… then you have to remember two differen passphrases…

Or couldn’t you just simplify it to like just ONE, like:

Can you have the same password for Phone Lockscreen as the Password Vault Master Password?

So that you Only ever need to remember exactly ONE password

Is this a good idea?

My head hurts from this…

Idk how to do this…

I wanna simplify my digital stuff… my stuff is so disorganized…

  • woodytrombone@lemmy.dbzer0.com
    3·
    1 hour ago

    If you have any voice with your Security department, you can tell them that rotating passwords are counter to NIST SP 800-63B (Section 10.2.1) guidance:

    Do not require that memorized secrets be changed arbitrarily (e.g., periodically) unless there is a user request or evidence of authenticator compromise.

    • baggachipz@sh.itjust.works
      1·
      9 minutes ago

      Oh I’ve done exactly that. He (security chief) insists it’s required for SOC2 compliance, an assertion I’m leery of.