<div class="xblock xblock-public_view xblock-public_view-vertical" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="VerticalStudentView" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="vertical" data-usage-id="block-v1:Totem+TP_SP_001+course+type@vertical+block@d64f936eb7804fcea6afd3fd19cab1d3" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<div class="vert-mod">
<div class="vert vert-0" data-id="block-v1:Totem+TP_SP_001+course+type@html+block@85c0cbffb8f1492fbb60dcc9ffccd558">
<div class="xblock xblock-public_view xblock-public_view-html xmodule_display xmodule_HtmlBlock" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="XBlockToXModuleShim" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="html" data-usage-id="block-v1:Totem+TP_SP_001+course+type@html+block@85c0cbffb8f1492fbb60dcc9ffccd558" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<script type="json/xblock-args" class="xblock-json-init-args">
{"xmodule-type": "HTMLModule"}
</script>
<p><strong>The internet stores a lot of data about you</strong>. Your <strong>credit card information</strong> might be tied to your Apple ID or Android Device ID, as well as to your online shopping accounts. <strong>Personal photos</strong>, including of your family, children, and friends, might be stored on Facebook, on your phone and and on the servers of your cloud storage. Your email and messaging app accounts have all your conversations with partners, friends and family, as well as work-related discussions and other information.</p>
<p style="text-align: center;"><img src="/assets/courseware/v1/f23566b94567604c572d67c040582eb8/asset-v1:Totem+TP_SP_001+course+type@asset+block/gif-data-types_v2.gif" alt="Types of Data" type="saveimage" target="[object Object]" p="" width="60%" /></p>
<p><strong>Your passwords need to be strong enough so you can keep control of your accounts</strong>. Once an account is hacked, an attacker can:</p>
<blockquote>
<ul>
<li>Access all the information in that account</li>
<li>Lock you out of that account</li>
<li>Impersonate you and communicate with, or send phishing emails to, your network (see Totem’s course on <a href="https://learn.totem-project.org/courses/course-v1:Totem+TP_PM_001+course/about" target="[object Object]">Phishing Attacks</a>)</li>
<li>Try to use this account to gain access to other accounts or use it to try to gain access to your financial information</li>
</ul>
</blockquote>
<p><br /><strong>A good password is the only thing keeping this information from being accessed</strong>. In short, it gives you control over your data.</p>
</div>
</div>
</div>
<script type="text/javascript">
(function (require) {
require(['/static/js/dateutil_factory.be68acdff619.js?raw'], function () {
require(['js/dateutil_factory'], function (DateUtilFactory) {
DateUtilFactory.transform('.localized-datetime');
});
});
}).call(this, require || RequireJS.require);
</script>
<script>
function emit_event(message) {
parent.postMessage(message, '*');
}
</script>
</div>
<div class="xblock xblock-public_view xblock-public_view-vertical" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="VerticalStudentView" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="vertical" data-usage-id="block-v1:Totem+TP_SP_001+course+type@vertical+block@ee5c98105d9441409dd7435bbe33a49d" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<div class="vert-mod">
<div class="vert vert-0" data-id="block-v1:Totem+TP_SP_001+course+type@problem+block@ceeccc016ccd4a4c93b31efe219e29c6">
<div class="xblock xblock-public_view xblock-public_view-problem xmodule_display xmodule_ProblemBlock" data-course-id="course-v1:Totem+TP_SP_001+course" data-block-type="problem" data-usage-id="block-v1:Totem+TP_SP_001+course+type@problem+block@ceeccc016ccd4a4c93b31efe219e29c6" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="True">
<div class="page-banner"><div class="alert alert-warning"><span class="icon icon-alert fa fa fa-warning" aria-hidden="true"></span><div class="message-content">Quiz is only accessible to enrolled learners. Sign in or register, and enroll in this course to view it.</div></div></div>
</div>
</div>
<div class="vert vert-1" data-id="block-v1:Totem+TP_SP_001+course+type@html+block@96140d87548641069d7374691f58ee82">
<div class="xblock xblock-public_view xblock-public_view-html xmodule_display xmodule_HtmlBlock" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="XBlockToXModuleShim" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="html" data-usage-id="block-v1:Totem+TP_SP_001+course+type@html+block@96140d87548641069d7374691f58ee82" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<script type="json/xblock-args" class="xblock-json-init-args">
{"xmodule-type": "HTMLModule"}
</script>
<p><img src="/assets/courseware/v1/ed64a213e0c3c7b308e46acea101ab3e/asset-v1:Totem+TP_SP_001+course+type@asset+block/password_post-its_v2.gif" alt="Passwords GIF" type="saveimage" target="[object Object]" width="100%" /></p>
</div>
</div>
<div class="vert vert-2" data-id="block-v1:Totem+TP_SP_001+course+type@html+block@94a9fd0aac884b9b87f53234b0ac99bf">
<div class="xblock xblock-public_view xblock-public_view-html xmodule_display xmodule_HtmlBlock" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="XBlockToXModuleShim" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="html" data-usage-id="block-v1:Totem+TP_SP_001+course+type@html+block@94a9fd0aac884b9b87f53234b0ac99bf" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<script type="json/xblock-args" class="xblock-json-init-args">
{"xmodule-type": "HTMLModule"}
</script>
<p>Below are the most popular passwords for 2018 - which make the accounts they “protect” very easy to hack.<br /><br /></p>
<blockquote><ol>
<li>123456</li>
<li>password</li>
<li>123456789</li>
<li>12345678</li>
<li>12345</li>
<li>111111</li>
<li>1234567</li>
<li>sunshine</li>
<li>qwerty</li>
<li>Iloveyou</li>
</ol></blockquote>
<p><em>Published by <a href="https://gizmodo.com/the-25-most-popular-passwords-of-2018-will-make-you-fee-1831052705" target="_blank">Gizmodo</a> </em><br /><br /><strong>If this is you, don’t worry - this course will walk you through creating stronger passwords</strong>. If your passwords are slightly better, there is probably still lots of room for improvement - continue on to find out why and how!</p>
</div>
</div>
</div>
<script type="text/javascript">
(function (require) {
require(['/static/js/dateutil_factory.be68acdff619.js?raw'], function () {
require(['js/dateutil_factory'], function (DateUtilFactory) {
DateUtilFactory.transform('.localized-datetime');
});
});
}).call(this, require || RequireJS.require);
</script>
<script>
function emit_event(message) {
parent.postMessage(message, '*');
}
</script>
</div>
<div class="xblock xblock-public_view xblock-public_view-vertical" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="VerticalStudentView" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="vertical" data-usage-id="block-v1:Totem+TP_SP_001+course+type@vertical+block@18d8b8a90ab142c0bb8cb85089100277" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<div class="vert-mod">
<div class="vert vert-0" data-id="block-v1:Totem+TP_SP_001+course+type@html+block@36d0aa6d76c545c6a0876692d776f6c9">
<div class="xblock xblock-public_view xblock-public_view-html xmodule_display xmodule_HtmlBlock" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="XBlockToXModuleShim" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="html" data-usage-id="block-v1:Totem+TP_SP_001+course+type@html+block@36d0aa6d76c545c6a0876692d776f6c9" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<script type="json/xblock-args" class="xblock-json-init-args">
{"xmodule-type": "HTMLModule"}
</script>
<p>There are a few different ways in which you can lose control over a password. You can be tricked, you can be phished (see Totem’s course on <a href="https://learn.totem-project.org/courses/course-v1:Totem+TP_PM_001+course/about" target="_blank">Phishing Attacks</a>), or your password can be cracked by a computer. Let’s look at how this happens.<br /> <br /><strong>You can be tricked</strong><br />Watch how easily Jimmy Kimmel’s street team manages to get passers-by to reveal their passwords:</p>
</div>
</div>
<div class="vert vert-1" data-id="block-v1:Totem+TP_SP_001+course+type@video+block@0659cbfa1c7047979fc94af7380f9ade">
<div class="xblock xblock-public_view xblock-public_view-video xmodule_display xmodule_VideoBlock" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="XBlockToXModuleShim" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="video" data-usage-id="block-v1:Totem+TP_SP_001+course+type@video+block@0659cbfa1c7047979fc94af7380f9ade" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<script type="json/xblock-args" class="xblock-json-init-args">
{"xmodule-type": "Video"}
</script>
<h3 class="hd hd-2">What is Your Password?</h3>
<div
id="video_0659cbfa1c7047979fc94af7380f9ade"
class="video closed"
data-metadata='{"autoAdvance": false, "autohideHtml5": false, "autoplay": false, "captionDataDir": null, "completionEnabled": false, "completionPercentage": 5000, "duration": null, "end": 0.0, "generalSpeed": 1.0, "lmsRootURL": "https://learn.totem-project.org", "poster": null, "prioritizeHls": false, "publishCompletionUrl": "/courses/course-v1:Totem+TP_SP_001+course/xblock/block-v1:Totem+TP_SP_001+course+type@video+block@0659cbfa1c7047979fc94af7380f9ade/handler/publish_completion", "recordedYoutubeIsAvailable": true, "savedVideoPosition": 0.0, "saveStateEnabled": false, "saveStateUrl": "/courses/course-v1:Totem+TP_SP_001+course/xblock/block-v1:Totem+TP_SP_001+course+type@video+block@0659cbfa1c7047979fc94af7380f9ade/handler/xmodule_handler/save_user_state", "showCaptions": "true", "sources": [], "speed": null, "start": 0.0, "streams": "1.00:opRMrEfAIiI", "transcriptAvailableTranslationsUrl": "/courses/course-v1:Totem+TP_SP_001+course/xblock/block-v1:Totem+TP_SP_001+course+type@video+block@0659cbfa1c7047979fc94af7380f9ade/handler/transcript/available_translations", "transcriptLanguage": "en", "transcriptLanguages": {"en": "English"}, "transcriptTranslationUrl": "/courses/course-v1:Totem+TP_SP_001+course/xblock/block-v1:Totem+TP_SP_001+course+type@video+block@0659cbfa1c7047979fc94af7380f9ade/handler/transcript/translation/__lang__", "ytApiUrl": "https://www.youtube.com/iframe_api", "ytMetadataEndpoint": "", "ytTestTimeout": 1500}'
data-bumper-metadata='null'
data-autoadvance-enabled="False"
data-poster='null'
tabindex="-1"
>
<div class="focus_grabber first"></div>
<div class="tc-wrapper">
<div class="video-wrapper">
<span tabindex="0" class="spinner" aria-hidden="false" aria-label="Loading video player"></span>
<span tabindex="-1" class="btn-play fa fa-youtube-play fa-2x is-hidden" aria-hidden="true" aria-label="Play video"></span>
<div class="video-player-pre"></div>
<div class="video-player">
<div id="0659cbfa1c7047979fc94af7380f9ade"></div>
<h4 class="hd hd-4 video-error is-hidden">No playable video sources found.</h4>
<h4 class="hd hd-4 video-hls-error is-hidden">
Your browser does not support this video format. Try using a different browser.
</h4>
</div>
<div class="video-player-post"></div>
<div class="closed-captions"></div>
<div class="video-controls is-hidden">
<div>
<div class="vcr"><div class="vidtime">0:00 / 0:00</div></div>
<div class="secondary-controls"></div>
</div>
</div>
</div>
</div>
<div class="focus_grabber last"></div>
</div>
</div>
</div>
<div class="vert vert-2" data-id="block-v1:Totem+TP_SP_001+course+type@html+block@2b37062314ae48719ae4d2e75fc27ce9">
<div class="xblock xblock-public_view xblock-public_view-html xmodule_display xmodule_HtmlBlock" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="XBlockToXModuleShim" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="html" data-usage-id="block-v1:Totem+TP_SP_001+course+type@html+block@2b37062314ae48719ae4d2e75fc27ce9" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<script type="json/xblock-args" class="xblock-json-init-args">
{"xmodule-type": "HTMLModule"}
</script>
<p style="text-align: center;"><em>Credit: <a href="https://www.youtube.com/watch?v=opRMrEfAIiI" target="_blank">What is your Password</a> from <a href="https://abc.go.com/shows/jimmy-kimmel-live" target="_blank">ABC Show Jimmy Kimmel Live</a></em></p>
<p></p>
<p>To remember passwords, <strong>people make them personal and easy to remember</strong> - which of course makes it easier for someone to get you to give up the information needed to reconstruct them.<br /><br /><strong>This strategy is known as “social engineering”</strong>, and is the reason why most major platforms have stopped using account recovery questions, and moved to recovery and account verification through an email address or phone number.<br /><br />Questions such as “What is your mother's maiden name,” or “What is the name of your favourite pet” are easy to uncover by looking at someone's Facebook profile, or chatting to them for a bit.<br /><br /><strong>Your password can be cracked by a computer</strong>. Computers can be used to crack passwords in one of two ways:</p>
<blockquote><ol>
<li>A software program tries to login to your account by cycling through combinations of common words known to be used as passwords. This is called <strong>dictionary attack</strong>. The more common your password (think of the list in the previous unit) the easier it is to crack it.</li>
<li>A software program attempts every alphanumeric password combination possible. This is called a <strong>brute force attack</strong>. Here the rule of thumb is: the shorter the password the easier it is for a computer to crack it.</li>
</ol></blockquote>
</div>
</div>
</div>
<script type="text/javascript">
(function (require) {
require(['/static/js/dateutil_factory.be68acdff619.js?raw'], function () {
require(['js/dateutil_factory'], function (DateUtilFactory) {
DateUtilFactory.transform('.localized-datetime');
});
});
}).call(this, require || RequireJS.require);
</script>
<script>
function emit_event(message) {
parent.postMessage(message, '*');
}
</script>
</div>
<div class="xblock xblock-public_view xblock-public_view-vertical" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="VerticalStudentView" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="vertical" data-usage-id="block-v1:Totem+TP_SP_001+course+type@vertical+block@600ba86d031c41d7a6b4e774b4fded57" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<div class="vert-mod">
<div class="vert vert-0" data-id="block-v1:Totem+TP_SP_001+course+type@html+block@9fa45320cebf449fae67f3ab27190035">
<div class="xblock xblock-public_view xblock-public_view-html xmodule_display xmodule_HtmlBlock" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="XBlockToXModuleShim" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="html" data-usage-id="block-v1:Totem+TP_SP_001+course+type@html+block@9fa45320cebf449fae67f3ab27190035" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<script type="json/xblock-args" class="xblock-json-init-args">
{"xmodule-type": "HTMLModule"}
</script>
<p>Copy-paste or type the following passwords in the box below to see how long it would take a modern computer to crack.<br /><em>Note: password-checkers are good to test your password strategy, but do NOT submit your actual passwords!</em></p>
<blockquote><ol>
<li>Spongebob</li>
<li>Spongebob33</li>
<li>Sponge33b0b19</li>
<li>Spongebob is a riot</li>
<li>Spongebob Whenever Amplifier Venomous Exemplary Bakeshop</li>
</ol></blockquote>
</div>
</div>
<div class="vert vert-1" data-id="block-v1:Totem+TP_SP_001+course+type@html+block@f82c68c4af6f48dea2e28223d97aa717">
<div class="xblock xblock-public_view xblock-public_view-html xmodule_display xmodule_HtmlBlock" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="XBlockToXModuleShim" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="html" data-usage-id="block-v1:Totem+TP_SP_001+course+type@html+block@f82c68c4af6f48dea2e28223d97aa717" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<script type="json/xblock-args" class="xblock-json-init-args">
{"xmodule-type": "HTMLModule"}
</script>
<p><em>Note: password checkers are good to test your password strategy, but do NOT submit your actual passwords!</em></p>
<p></p>
<p><iframe title="Check password" src="/js-components/en/problem_password.html" marginwidth="0" marginheight="0" scrolling="no" width="402" height="402" frameborder="0">
Your browser does not support IFrames.
</iframe></p>
</div>
</div>
<div class="vert vert-2" data-id="block-v1:Totem+TP_SP_001+course+type@html+block@2de87b8e8ffd41fd9be432f2c6b69b79">
<div class="xblock xblock-public_view xblock-public_view-html xmodule_display xmodule_HtmlBlock" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="XBlockToXModuleShim" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="html" data-usage-id="block-v1:Totem+TP_SP_001+course+type@html+block@2de87b8e8ffd41fd9be432f2c6b69b79" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<script type="json/xblock-args" class="xblock-json-init-args">
{"xmodule-type": "HTMLModule"}
</script>
<p>Which one was the strongest according to the password checker?</p>
</div>
</div>
<div class="vert vert-3" data-id="block-v1:Totem+TP_SP_001+course+type@discussion+block@3329dda372aa4ca9805717b55f0ee3ec">
<div class="xblock xblock-public_view xblock-public_view-discussion" data-course-id="course-v1:Totem+TP_SP_001+course" data-block-type="discussion" data-usage-id="block-v1:Totem+TP_SP_001+course+type@discussion+block@3329dda372aa4ca9805717b55f0ee3ec" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<div class="page-banner"><div class="alert alert-warning"><span class="icon icon-alert fa fa fa-warning" aria-hidden="true"></span><div class="message-content">Discussion is only accessible to enrolled learners. Sign in or register, and enroll in this course to view it.</div></div></div>
</div>
</div>
</div>
<script type="text/javascript">
(function (require) {
require(['/static/js/dateutil_factory.be68acdff619.js?raw'], function () {
require(['js/dateutil_factory'], function (DateUtilFactory) {
DateUtilFactory.transform('.localized-datetime');
});
});
}).call(this, require || RequireJS.require);
</script>
<script>
function emit_event(message) {
parent.postMessage(message, '*');
}
</script>
</div>
<div class="xblock xblock-public_view xblock-public_view-vertical" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="VerticalStudentView" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="vertical" data-usage-id="block-v1:Totem+TP_SP_001+course+type@vertical+block@6629b04b9e1c4ea1839849e9c339b7f4" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<div class="vert-mod">
<div class="vert vert-0" data-id="block-v1:Totem+TP_SP_001+course+type@html+block@af5f9573c246480ebde7978ae1919347">
<div class="xblock xblock-public_view xblock-public_view-html xmodule_display xmodule_HtmlBlock" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="XBlockToXModuleShim" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="html" data-usage-id="block-v1:Totem+TP_SP_001+course+type@html+block@af5f9573c246480ebde7978ae1919347" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<script type="json/xblock-args" class="xblock-json-init-args">
{"xmodule-type": "HTMLModule"}
</script>
<p>Passwords are like your house keys. You need to have a strong lock on your door, keep your keys safe, don’t leave them lying around, and make sure you can access them when you need them. You also wouldn’t feel comfortable letting random people make a copy of them. Right? <br /><br />With the computers becoming stronger and faster, and our life became more digital with lots of sensitive information (like our bank details) experts suggest <strong>we move from password to passphrases</strong>; just like we moved from simple house keys to more detailed house keys.</p>
<p style="text-align: center;"><img src="/assets/courseware/v1/f8c7352d8b6b3605b5a92dba1636db4c/asset-v1:Totem+TP_SP_001+course+type@asset+block/190325_passwords-01.png" alt="Password vs Passphrase" type="saveimage" target="[object Object]" width="80%" /></p>
<p>But which phrase? You might have heard advice to use a line from a book, or a title of a movie - but password cracking software has gotten smarter than this, making the advice to use “known phrases” outdated.<br /><br />A passphrase is much, much stronger if it’s made up of random words.</p>
<p style="text-align: center;"><img src="/assets/courseware/v1/b47fbb50499412bd840576edfc20737d/asset-v1:Totem+TP_SP_001+course+type@asset+block/image5.gif" alt="Random Words" type="saveimage" target="[object Object]" width="80%" /></p>
<p></p>
<section style="border: 2px; border-style: solid; border-color: #66cc99; padding: 1em;">Take a minute to write down your own random passphrase. Now look at the words you have chosen.</section>
<p></p>
<p></p>
</div>
</div>
</div>
<script type="text/javascript">
(function (require) {
require(['/static/js/dateutil_factory.be68acdff619.js?raw'], function () {
require(['js/dateutil_factory'], function (DateUtilFactory) {
DateUtilFactory.transform('.localized-datetime');
});
});
}).call(this, require || RequireJS.require);
</script>
<script>
function emit_event(message) {
parent.postMessage(message, '*');
}
</script>
</div>
<div class="xblock xblock-public_view xblock-public_view-vertical" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="VerticalStudentView" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="vertical" data-usage-id="block-v1:Totem+TP_SP_001+course+type@vertical+block@428df6c00ce94d8cbf4bf87c37558413" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<div class="vert-mod">
<div class="vert vert-0" data-id="block-v1:Totem+TP_SP_001+course+type@html+block@ee863c7e846d4eb9ad6c82992204d410">
<div class="xblock xblock-public_view xblock-public_view-html xmodule_display xmodule_HtmlBlock" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="XBlockToXModuleShim" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="html" data-usage-id="block-v1:Totem+TP_SP_001+course+type@html+block@ee863c7e846d4eb9ad6c82992204d410" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<script type="json/xblock-args" class="xblock-json-init-args">
{"xmodule-type": "HTMLModule"}
</script>
<p><strong>Are your words random enough?</strong> <br />If you need some help, there are a number of sources online where you can find long word lists - including the <a href="https://www.eff.org/files/2016/07/18/eff_large_wordlist.txt" target="_blank">Large Word list</a> from the Electronic Frontier Foundation (EFF). <br /><br /><strong>Exercise: create a random passphrase using dice.</strong> <br />If you happen to have five dice lying around and some spare time, you can use these to create your passphrases. (This technique is known as “diceware”). Try it by following the steps below:</p>
<blockquote><ol>
<li>Role your five dice, and write down the resulting numbers (e.g. 16422).</li>
<li>Find the corresponding word on the EFF word list.</li>
<li>Repeat this five more times, until you have a total of six random words. That’s your passphrase! (Feel free to use spaces between the words.)</li>
</ol></blockquote>
<p><br />You can read more about this <a href="https://www.eff.org/dice" target="_blank">diceware strategy here</a>. And if you do not have five dice lying around, then just randomly select six words from the EFF word list.<br /><br />Now test how strong your random passphrase is below. How long will it take a computer to crack it?</p>
</div>
</div>
<div class="vert vert-1" data-id="block-v1:Totem+TP_SP_001+course+type@html+block@84aa242ea8e84f589e4a773be7259453">
<div class="xblock xblock-public_view xblock-public_view-html xmodule_display xmodule_HtmlBlock" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="XBlockToXModuleShim" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="html" data-usage-id="block-v1:Totem+TP_SP_001+course+type@html+block@84aa242ea8e84f589e4a773be7259453" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<script type="json/xblock-args" class="xblock-json-init-args">
{"xmodule-type": "HTMLModule"}
</script>
<p><em>Note: password checkers are good to test your password strategy, but do NOT submit your actual passwords!</em></p>
<p></p>
<p><iframe title="Check password" src="/js-components/en/problem_password.html" marginwidth="0" marginheight="0" scrolling="no" width="402" height="402" frameborder="0">
Your browser does not support IFrames.
</iframe></p>
</div>
</div>
</div>
<script type="text/javascript">
(function (require) {
require(['/static/js/dateutil_factory.be68acdff619.js?raw'], function () {
require(['js/dateutil_factory'], function (DateUtilFactory) {
DateUtilFactory.transform('.localized-datetime');
});
});
}).call(this, require || RequireJS.require);
</script>
<script>
function emit_event(message) {
parent.postMessage(message, '*');
}
</script>
</div>
<div class="xblock xblock-public_view xblock-public_view-vertical" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="VerticalStudentView" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="vertical" data-usage-id="block-v1:Totem+TP_SP_001+course+type@vertical+block@91e5a413ee1d4934b586bb294cbb3fb2" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<div class="vert-mod">
<div class="vert vert-0" data-id="block-v1:Totem+TP_SP_001+course+type@html+block@129986a06c7b4086968352b732e148c8">
<div class="xblock xblock-public_view xblock-public_view-html xmodule_display xmodule_HtmlBlock" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="XBlockToXModuleShim" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="html" data-usage-id="block-v1:Totem+TP_SP_001+course+type@html+block@129986a06c7b4086968352b732e148c8" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<script type="json/xblock-args" class="xblock-json-init-args">
{"xmodule-type": "HTMLModule"}
</script>
<p>So <strong>now you’ve got a great random passphrase</strong>…..but are you planning to use it (or variations of it) across multiple accounts? Maybe you’ve heard that this is not the best idea… but why? <br /><br />This short animation by Tactical Tech explains, and then offers a practical solution for how you can store multiple passwords. This is explored in more depth in the next module.</p>
<p></p>
</div>
</div>
<div class="vert vert-1" data-id="block-v1:Totem+TP_SP_001+course+type@video_xblock+block@d2c070868cfd4e3b87ff1d78a489bf00">
<div class="xblock xblock-public_view xblock-public_view-video_xblock" data-course-id="course-v1:Totem+TP_SP_001+course" data-block-type="video_xblock" data-usage-id="block-v1:Totem+TP_SP_001+course+type@video_xblock+block@d2c070868cfd4e3b87ff1d78a489bf00" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<div class="page-banner"><div class="alert alert-warning"><span class="icon icon-alert fa fa fa-warning" aria-hidden="true"></span><div class="message-content">1 password = 0 security is only accessible to enrolled learners. Sign in or register, and enroll in this course to view it.</div></div></div>
</div>
</div>
<div class="vert vert-2" data-id="block-v1:Totem+TP_SP_001+course+type@html+block@3610560f396b447fa5de0f3264004ebd">
<div class="xblock xblock-public_view xblock-public_view-html xmodule_display xmodule_HtmlBlock" data-course-id="course-v1:Totem+TP_SP_001+course" data-init="XBlockToXModuleShim" data-runtime-class="LmsRuntime" data-runtime-version="1" data-block-type="html" data-usage-id="block-v1:Totem+TP_SP_001+course+type@html+block@3610560f396b447fa5de0f3264004ebd" data-request-token="8f3b7f94a05c11eb8ba00242ac120009" data-graded="False" data-has-score="False">
<script type="json/xblock-args" class="xblock-json-init-args">
{"xmodule-type": "HTMLModule"}
</script>
<p style="text-align: center;"><em>Credit: <a href="https://vimeo.com/57885568" target="_blank">Ono: 1 password = 0 security</a> from <a href="https://vimeo.com/tacticaltech" target="_blank">Tactical Technology Collective</a></em></p>
<section style="border: 2px; border-style: solid; border-color: #66cc99; padding: 1em;"><strong>Tip:</strong> Use a unique strong password for each of your accounts!</section>
</div>
</div>
</div>
<script type="text/javascript">
(function (require) {
require(['/static/js/dateutil_factory.be68acdff619.js?raw'], function () {
require(['js/dateutil_factory'], function (DateUtilFactory) {
DateUtilFactory.transform('.localized-datetime');
});
});
}).call(this, require || RequireJS.require);
</script>
<script>
function emit_event(message) {
parent.postMessage(message, '*');
}
</script>
</div>