The problem with passwords is passwords.
Security experts have told us for years that we should have long, complex passwords that are different for every website we visit, and that we should then change those passwords often.
But almost no one follows this advice, and that’s because following these rules is incredibly difficult. A long, complicated password is hard to remember, and remembering dozens — or hundreds — is nearly impossible. Changing them frequently only multiplies the problem.
Some people turn to a password manager to keep track of all their passwords, but that just centralizes the point of failure into one master password, which, if cracked, instantly grants access to all of your accounts and information. A password manager installed on your home computer may not be available across all of your devices, but a password manager based in the cloud means you’re entrusting the master key to your digital life entirely to their system.
Using services like Google and Facebook to login to other sites can seem appealing, but now you’re not only entrusting your security to a third party, you’re also getting drawn further and further into the systems of massive companies whose business is buying and selling your personal information.
But even if you’re a password genius who follows all the rules and can remember long, strange passwords that change all the time, even if the system you use to manage your passwords is secure and really does have your best interests at heart, you’re still susceptible to keyloggers.
A keylogger is a tiny program that records what you type on your keyboard. Keyloggers are readily available by the thousands online, and even if you’re confident in your own browsing and downloading practices, it only takes someone else who has access to your computer — a friend, a spouse, or a kid — to make one mistake and you could be infected with a keylogger.
A keylogger doesn’t care about any of your complicated security measures, it only cares what you type. It just wants your passwords.
It’s as if we’ve been set up to fail.
Login with TREZOR: Life after passwords
Logging in with TREZOR lets you move beyond passwords, enabling an ultimately secure, convenient password-less login.
Since TREZOR uses Bitcoin technology, your private keys can’t be cracked. And a private key on a TREZOR is never exposed to your computer or the Internet, which means that when you log in with TREZOR your credentials can’t be compromised by malware — even if you’re using an infected computer, smartphone or tablet.
A simple PIN is all you need to remember to login with TREZOR, yet because of TREZOR’s ingenious Smart PIN matrix, your PIN can’t be read by keyloggers.
Even if a malicious party somehow learns your PIN, it’s useless without the physical device itself. Likewise, if your TREZOR is lost or stolen, no one can use it to login without your PIN.
Logging in with TREZOR keeps you in control of your identity, not a giant corporation or cloud service. And if your TREZOR becomes lost or damaged, you can easily rebuild your keys from your secret 24-word backup phrase.
TREZOR is the key to life after passwords: one supremely secure device that can enable convenient universal login without exposing your credentials to anyone, all while keeping you in control of your identity.
