C'YaPass: Forget All Your Passwords

Never Memorize A Password Again
Never Type A Password Again
Never Make Up A Password Again

Say Goodbye To Password Notebooks, Spreadsheets & Sticky Notes

You don't have to write your passwords down any more.  There's a better way now. Watch the included video to see C'YaPass in action.

Are Sticky Notes For Real?

I recently went into a coworker's cubicle to give him a printed document he had requested a signature on.  He wasn't there so I slid it under the keyboard.  When I did, it only went so far so I picked up the keyboard and noticed a sticky note was jammed under there.  Oh no!  

Do People Really Use Password Notebooks?

The following amazon product link (opens in a new tab/window) shows you where you can buy the password log book.  

The product has been selling like hot-cakes since 2010.  Obviously, many people employ their own generic notebooks also.

Notebooks Can Be A Good Option

These notebooks make sense.  They especially make sense for home-users -- people who have a large number of IDs / passwords to deal with related to bills and all the rest.

Helpful For People With Weak Memory

They also make great sense for an anyone whose memory may not be as good as it was in the past. 

Notebooks Must Be Kept Secure From Prying Eyes

However, these notebooks can be a problem too, if you have family members or others coming into the elderly person's house who might not be as trusted as you hope.  Bad stuff happens sometimes. Unfortunately people get curious and may decide they want to know grandpa's banking password.

What About Spreadsheets?

I spoke with a number of people who have to manage large number of passwords at work and they said they use a master spreadsheet which they keep encrypted on their computer or a server on the network.

Keeps the Honest People Honest

C'YaPass makes it so you never have to use any of those methods again.

C'YaPass will add an extra layer to keep your passwords out of the hands of physical intruders too.

Of course, it will also create stronger passwords for your use and it will always keep the big three promise:

Big Three Promise

  1. Never Memorize a Password Again
  2. Never Type a Password Again
  3. Never Make Up a Password Again

See It In Action, Before You Try It

I understand the software is new to you so you definitely want to see it in action before you try it.
The following video will show you the Windows version being used and then switch over and show you how you would then use the iPhone version to generate your password when you are mobile.


Get C'YaPass and Try It

iOS / iPhone / iPad

The iOS (iPhone / iPad) version is available for the first time today (12.08.2016) in the App Store at:

https://itunes.apple.com/us/app/cyapass/id1183137527?mt=8^

Windows 

You can get the Windows version here at this site (just click the Get C'YaPass menu or follow this link: http://cyapass.com/page/get-c-yapass^

Android

You can also get the Android version in the Google Play store at:

https://play.google.com/store/apps/details?id=us.raddev.cyapass^

Are You Still Making Up Passwords?

The requirement to make up a new password often breaks the natural workflow. It happens in a 100 different ways, but it happens often. 

Doing One Thing, Leads To Another Password

There you are just trying to fill out the FAFSA (Free Application For Federal Student Aid) to help your child.  Suddenly, it informs you that you need to create another separate ID for tax information purposes and now you need YAP (Yet Another Password),  

Creating Password Stops Workflow

Now you have to stop, create a new ID and then think up a new password.  Then, after you create the new ID and password you have to make sure you record it somewhere because you are not going to remember it the next time you need it.  Where do you record it?  In a notebook?  That's not great.

Do This Instead

Get the free C'YAPass (for Windows on this site^) and/or Android (Google Play store link^) and coming soon to iOS in the app store.

Create Your Unique Site/Keys As Reminders

Once you get the app, you'll simply add some site/keys which will help you remember which site the generated password is associated with. 

Here's a snapshot of the Windows app with a few site/keys already created.

 

Full Power of C'YaPass Realized

Now imagine you have the same situation where you are required to create a new password with a new ID at some site.  With C'YaPass it is so much easier.  You don't have to do anything except create a new site/key. 

  1. Click the [Add] button
  2. type in your new site/key
  3. click the [OK] button to add the site/key
  4. The password is generated automatically
  5. The password is copied to your clipboard so you can easily paste it into the password box
It'll look like the following:


Once you add the new site/key C'YaPass will automatically choose it as the current one and generate your new password from the site/key and your drawing. Notice that the password is different from the previous one.

It's Just As Easy On Android

Here's what it looks like in the Android app.


When the user clicks [OK] the new site/key is added.



Copied To The Clipboard For Pasting

It's that easy.  The password is copied the the clipboard on Android also so you can simply paste it wherever you're going to use it.

Also Notice : Same Passwords On Both Platforms (Windows & Android)

Your password is generated from your stie/key and your drawing.  Since they are both the same on both Andriod and Windows, we get the same strong password. You can read more about the details of how C'YaPass does this magic here in other blog entries.

Get the app and try it today and start making your life easier with stronger passwords.

Nothing Can Make You Completely Safe, But You Can Be Safer

There are no guarantees for safety.  As soon as someone offers you a guarantee, someone else sees it as a security challenge to crack.   Fortunately there are ways to become more safe.  

Safe Enough Through Strength

However, if you use the correct tool, you will be so safe that it is too bothersome for nefarious characters to try to crack your security.  They'll move on to easier prey.

Convenience and Strength

A proper security tool should offer you convenience and strength.  We all know that if a tool is too difficult to use, people are going to ignore it, even if it makes them safe.  

That's a big reason that C'YaPass is focused on making your life easier.  That's why the big three ideas of C'YaPass are so important:

Big Three of C'YaPass

  1. Never type a password again
  2. Never memorize a password again
  3. Never make up a password again

In the End, It's Just A Password Generator

But, C'YaPass is no panacea, no cure-all.  It will :
  1. Make far stronger passwords than you could ever create
  2. Make it easier to sign in to your secure sites no matter what device you are using.

Even When Using C'YaPass, Think Strong

The strong you make your site/keys in C'YaPass, the better.
Here's how you can make stronger site/keys:
  • Make them longer
  • Put special chars in them
  • Use uppercase
Why would you do all of that?  in the extreme case where some hacker comes along and attempts to generate passwords based off of the billions of graphic patterns and unlimited site/key inputs it will make it more difficult for the hacker to get even close to your site/key.  Without your exact site key they'll never be able to get your final hash password.  

Here's An Extreme Example

Suppose you make your site/key something like any of the following:
  • yahoo
  • gmail
  • microsoft
Those may be common site/keys which could mean the nefarious actor would be half way towards a final hash.  Well, it's probably not even half way with all the graphic patterns she'd have to try also, but stronger is better.

You might create yours which look like the last two in the following image:


Of course, you can make the pattern you draw far more complex than my example also.

Why Would I Tell You This?

I reveal everything about C'YaPass so you can be the most secure possible.

Main Goal of My Work With C'YaPass

My goal is to get everyone to use C'YaPass, but a more important goal of mine is to :
Make Everyone More Secure
and 
Make Hacking of People's Data More Difficult As A Deterrent

It we all simply become more conscious of security through many people considering passwords and we obtain stronger security, then I consider that a success.

Three Steps To Never Type Your Password Again

Once you have just one site/key entered into C'YaPass you will begin to realize the benefit of never having to type a password again.  It's as simple as three steps shown in the following series of images.

Choose Your Site/Key

Simply click on the item in your list of site/keys.

[x]

Here's a quick zoomed up look at the generated password.  Later we'll compare this to the one that is generated in the Anrdoid app.


Draw Your Pattern

This is your unique pattern that helps create the password for all your sites.

You can see the pattern we drew in the first image.

Paste The Password At Your Login Site

In this example, we'll sign into our mail account at Microsoft Live.

Just right-click on the password text box and choose the Paste item that appears in the context menu.


I've highlighted the password field in the next image to make it stand out.  You can see that the password box turns the characters into dots to hide them.


Not Necessarily All That Amazing

This isn't all that amazing, except of course you don't have to type your password.  On a computer, that's not too big of a deal because you have a physical keyboard.  

Consider Typing 64 Characters With Your Thumbs

However, imagine trying to type that 64 character password on a mobile device.  With C'YaPass you never have to again.  Let's take a look at the Android app as an example.

Android Sign On : No Typing With Your Thumbs

We can do this fast, because it's the same thing.

  1. Choose your site/key.
  2. Draw your pattern
  3. Paste the generated password.
It all looks like the following in the Android app:


It's The Same Complex Generated Password

Take a close look at the generated password.  It's the same generated password here on Android as you had generated in the Windows app.  

Same Two Elements

That's because you used the same :
  1. site/key
  2. drawn pattern
If you had altered either of those you'd have a completely different complex password.

To finish this out, here's what it looks like when you paste your password into the mail.live.com site:




It's true with C'YaPass: 

Never type a password again.  

Remember, C'YaPass also means :
  1. You will never memorize a password again
  2. You will never make up a password again.

Arbitrary Password Requirements Got Users Going In All Directions

We've all experienced it. You go to a web site and try to sign up and create a password and it has yet another set of arbitrary rules for creating your password.  

Those requirements are often created by developers who make arbitrary decisions that are not based upon current research.  

MIT Technology Review magazine has exposed research which shows that longer passwords are stronger.

MIT Technology Review Magazine

MIT's Technology Review magazine reported back in October 2015 that research shows that longer passwords is what makes them stronger.  The article goes on to explain that many web sites get password requirements wrong and require special characters and uppercase in a false belief that those elements make passwords stronger.  You can read the original article at : https://www.technologyreview.com/s/542576/youve-been-misled-about-what-makes-a-good-password/

Making Passwords Stronger

Making passwords stronger means making them longer.  But everyone knows that human memory has limits.  A great length for a password might be 64 characters. However, there are few people who are going to memorize a 64 character password for even one site. That's what C'YaPass is for.  It generates long passwords (which are not based upon words) and will manage them for you.

Arbitrary Password Requirements

Even a federal student loan payment site (nelnet.com) that I've had to use recently enforces these false requirements.  Here's what the requirements look like:


The alarming thing in these requirements is that a password is constrained to a maximum of fifteen characters.  That's not good.

That's a very short password and makes it quite a bit easier for hackers to generate password possibilities.

Arbitrary Requirements Confuse Users

These requirements confuse users into believing this is how you create a strong password.  But, as the MIT article mentioned, the hackers have changed their methods and using those extra symbols doesn't do much to increase the strength of a password.

Great Sites Understand That Password Length Is What Matters

Here are some example sites and companies that accept the C'YaPass default 64 character password:

  • Microsoft
  • Google
  • LinkedIn.com
  • Yahoo! mail - They changed this right after they were hacked.  Previously they only allowed passwords up to 32 characters.

What About Apple?

My AppleId will only accept up to 32 characters and it forces an uppercase.

Password Strength Testers

We've all seen those Password Strength testers which supposedly determine how strong your password is, but they are of dubious value.  That's because they simply check for things like the arbitrary requirements I showed you earlier in this article. 

When I enter a 64 character hash value generated by C'YaPass, that is not based upon words into those things, they generally say the password is of medium strength.  That's something that really needs to change.

Check Your Password Strength

Here's a utility that was created by the creators of DashLane, a popular password management system that stores your passwords in an encrypted file or out on the web on the Dashlane site.  

https://howsecureismypassword.net/

That link will open in a new window and then you can check your password strength and how long it will take hackers to guess your password on average.  

Test Easy Passwords

You don't have to type your real password, but just type in something like a word.  For example I used the word super and it resulted in the following:


I then changed my test password to "supergood" and got the following result:


Finally, I changed my password test to one generated by C'YaPass :

8d9b0b2639a9bdf96c1066ad2fa488f33b1188fc0ab7c600df83cfe2851e9017

I obtained the following result:


Yes, sesvigintillion is a real number.That's a long, long time.  See https://en.wikipedia.org/wiki/Names_of_large_numbers for more about sesvigintillion.

Make Your Passwords Stronger

Whether you decide to use Dashlane or C'YaPass is up to you, but definitely start using something to make your passwords stronger and your accounts more secure.

C'YaPass Availability

You can get C'YaPass for Windows here at this site for free: http://cyapass.com/page/get-c-yapass

You can get the Android version in the Google Play store for free: https://play.google.com/store/apps/details?id=us.raddev.cyapass

IOS Coming Very Soon

The iOS / iPhone/ iPad version is coming soon (by end of year 2016).