{"id":6760,"date":"2023-09-27T13:59:34","date_gmt":"2023-09-27T13:59:34","guid":{"rendered":"https:\/\/tech-lib.eu\/tech\/?p=6760"},"modified":"2023-09-27T13:59:34","modified_gmt":"2023-09-27T13:59:34","slug":"understanding-how-password-managers-work","status":"publish","type":"post","link":"https:\/\/tech-lib.eu\/tech\/understanding-how-password-managers-work\/","title":{"rendered":"Understanding How Password Managers Work"},"content":{"rendered":"
\n
<\/div>\n

V sou\u010dasn\u00e9 digit\u00e1ln\u00ed dob\u011b, kdy m\u00e1me tolik online \u00fa\u010dt\u016f a slu\u017eeb, kter\u00e9 vy\u017eaduj\u00ed hesla, m\u016f\u017ee b\u00fdt obt\u00ed\u017en\u00e9 si je v\u0161echna zapamatovat. Spr\u00e1vci hesel mohou b\u00fdt v t\u00e9to situaci u\u017eite\u010dn\u00ed. Abychom si mohli vytvo\u0159it siln\u00e1, jedine\u010dn\u00e1 hesla pro ka\u017ed\u00fd \u00fa\u010det, ani\u017e bychom je museli sledovat, m\u016f\u017eeme pou\u017e\u00edt spr\u00e1vce hesel, co\u017e je software ur\u010den\u00fd k bezpe\u010dn\u00e9mu ukl\u00e1d\u00e1n\u00ed a spr\u00e1v\u011b na\u0161ich hesel. V tomto p\u0159\u00edsp\u011bvku prozkoum\u00e1me, jak spr\u00e1vci hesel funguj\u00ed, jak reaguj\u00ed na bezpe\u010dnostn\u00ed probl\u00e9my, pod\u00edv\u00e1me se na generov\u00e1n\u00ed hesel a projdeme si ukl\u00e1d\u00e1n\u00ed hesel. <\/p>\n

<\/div>\n

Spr\u00e1vci hesel uchov\u00e1vaj\u00ed va\u0161e hesla v \u0161ifrovan\u00e9 datab\u00e1zi, b\u011b\u017en\u011b ozna\u010dovan\u00e9 jako „trezor“. Jedin\u00e9 heslo, kter\u00e9 si mus\u00edte pamatovat pro p\u0159\u00edstup do tohoto trezoru, je hlavn\u00ed heslo. Spr\u00e1vce hesel po zad\u00e1n\u00ed hlavn\u00edho hesla odemkne trezor a na\u010dte hesla k va\u0161im \u00fa\u010dt\u016fm. D\u00edky tomu si mus\u00edte pamatovat pouze jedno siln\u00e9 heslo a spr\u00e1vce hesel bezpe\u010dn\u011b ulo\u017e\u00ed v\u0161echna ostatn\u00ed hesla. <\/p>\n

<\/div>\n

Kdykoli jsou spr\u00e1vci hesel napadeni? P\u0159esto\u017ee \u017e\u00e1dn\u00fd syst\u00e9m nen\u00ed zcela odoln\u00fd v\u016f\u010di hackersk\u00fdm \u00fatok\u016fm, spr\u00e1vci hesel jsou vybaveni siln\u00fdmi bezpe\u010dnostn\u00edmi prvky, kter\u00e9 chr\u00e1n\u00ed va\u0161e \u00fadaje. Renomovan\u00ed spr\u00e1vci hesel \u010dasto pou\u017e\u00edvaj\u00ed v\u00fdkonn\u00e9 \u0161ifrov\u00e1n\u00ed, kter\u00e9 lze odemknout pouze pomoc\u00ed hlavn\u00edho hesla. Zabezpe\u010den\u00ed va\u0161ich \u00fa\u010dt\u016f d\u00e1le zvy\u0161uje dvoufaktorov\u00e9 ov\u011b\u0159ov\u00e1n\u00ed, kter\u00e9 poskytuj\u00ed n\u011bkte\u0159\u00ed spr\u00e1vci hesel. <\/p>\n

<\/div>\n

Jak spr\u00e1vci hesel vytv\u00e1\u0159ej\u00ed hesla? Schopnost spr\u00e1vc\u016f hesel vytv\u00e1\u0159et bezpe\u010dn\u00e1, jedine\u010dn\u00e1 hesla pro ka\u017ed\u00fd v\u00e1\u0161 \u00fa\u010det je jednou z jejich hlavn\u00edch v\u00fdhod. Spr\u00e1vce hesel v\u00e1m m\u016f\u017ee pomoci vymyslet n\u00e1hodn\u00e9 a slo\u017eit\u00e9 heslo p\u0159i zakl\u00e1d\u00e1n\u00ed nov\u00e9ho \u00fa\u010dtu nebo zm\u011bn\u011b st\u00e1vaj\u00edc\u00edho. V\u011bt\u0161inou tato hesla obsahuj\u00ed kombinaci velk\u00fdch a mal\u00fdch p\u00edsmen, \u010d\u00edslic a speci\u00e1ln\u00edch znak\u016f. Vytvo\u0159en\u00edm odli\u0161n\u00fdch hesel pro ka\u017ed\u00fd \u00fa\u010det sn\u00ed\u017e\u00edte mo\u017enost, \u017ee by jedin\u00e9 hacknut\u00e9 heslo mohlo ohrozit \u0159adu \u00fa\u010dt\u016f. Uchov\u00e1v\u00e1 spr\u00e1vce hesel hesla v souboru? Spr\u00e1vci hesel skute\u010dn\u011b uchov\u00e1vaj\u00ed z\u00e1znamy o va\u0161ich heslech, ale d\u011blaj\u00ed to \u0161ifrovan\u011b. To znamen\u00e1, \u017ee i kdyby se hacker dostal do datab\u00e1ze spr\u00e1vce hesel, bez hlavn\u00edho hesla by nemohl ulo\u017een\u00e1 hesla p\u0159e\u010d\u00edst. Je velmi d\u016fle\u017eit\u00e9 vybrat si d\u016fv\u011bryhodn\u00e9ho spr\u00e1vce hesel, kter\u00fd pou\u017e\u00edv\u00e1 siln\u00e9 \u0161ifrovac\u00ed techniky, proto\u017ee ne v\u0161ichni spr\u00e1vci hesel ukl\u00e1daj\u00ed hesla stejn\u00fdm zp\u016fsobem. <\/p>\n

<\/div>\n

Jak\u00fd spr\u00e1vce hesel byl napaden? Spr\u00e1vci hesel se obvykle uk\u00e1zali jako bezpe\u010dn\u00ed, nicm\u00e9n\u011b \u017e\u00e1dn\u00fd syst\u00e9m nen\u00ed zcela odoln\u00fd v\u016f\u010di \u00fatok\u016fm. Jeden z nejzn\u00e1m\u011bj\u0161\u00edch spr\u00e1vc\u016f hesel, LastPass, utrp\u011bl v roce 2015 bezpe\u010dnostn\u00ed probl\u00e9m. Je nicm\u00e9n\u011b d\u016fle\u017eit\u00e9 si uv\u011bdomit, \u017ee p\u0159i t\u00e9to ud\u00e1losti nebyla ohro\u017eena \u017e\u00e1dn\u00e1 u\u017eivatelsk\u00e1 hesla. Spole\u010dnost LastPass rychle po incidentu p\u0159idala dal\u0161\u00ed bezpe\u010dnostn\u00ed opat\u0159en\u00ed a otev\u0159en\u011b komunikovala se sv\u00fdmi u\u017eivateli. Mnoho firem spravuj\u00edc\u00edch hesla tato ud\u00e1lost probudila, co\u017e je p\u0159im\u011blo k dal\u0161\u00edmu zlep\u0161en\u00ed zabezpe\u010den\u00ed. <\/p>\n

<\/div>\n

Spr\u00e1vci hesel jsou nakonec u\u017eite\u010dn\u00fdmi n\u00e1stroji, kter\u00e9 n\u00e1m usnad\u0148uj\u00ed spr\u00e1vu na\u0161ich online \u00fa\u010dt\u016f. Funguj\u00ed tak, \u017ee bezpe\u010dn\u011b uchov\u00e1vaj\u00ed na\u0161e p\u0159ihla\u0161ovac\u00ed \u00fadaje v trezoru, kter\u00fd je za\u0161ifrovan\u00fd a zabezpe\u010den\u00fd hlavn\u00edm heslem. A\u010dkoli \u017e\u00e1dn\u00fd syst\u00e9m nen\u00ed pro hackery neproniknuteln\u00fd, d\u016fv\u011bryhodn\u00ed spr\u00e1vci hesel pou\u017e\u00edvaj\u00ed k ochran\u011b va\u0161ich \u00fadaj\u016f robustn\u00ed \u0161ifrov\u00e1n\u00ed a bezpe\u010dnostn\u00ed kontroly. Pro ka\u017ed\u00fd \u00fa\u010det mohou vytv\u00e1\u0159et siln\u00e1, jedine\u010dn\u00e1 hesla a bezpe\u010dn\u011b je uchov\u00e1vat. P\u0159esto\u017ee se v minulosti vyskytly probl\u00e9my, spr\u00e1vci hesel se z nich pou\u010dili a neust\u00e1le vylep\u0161uj\u00ed sv\u00e9 bezpe\u010dnostn\u00ed postupy, aby byla va\u0161e hesla v bezpe\u010d\u00ed.<\/p><\/div>\n

\n
FAQ<\/div>\n
\n
Jak\u00e9 jsou nev\u00fdhody spr\u00e1vce hesel?<\/div>\n

P\u0159esto\u017ee spr\u00e1vci hesel poskytuj\u00ed mnoho v\u00fdhod, existuje i n\u011bkolik nev\u00fdhod, kter\u00e9 by si u\u017eivatel\u00e9 m\u011bli uv\u011bdomit: Vzhledem k tomu, \u017ee spr\u00e1vci hesel ukl\u00e1daj\u00ed v\u0161echna va\u0161e hesla na jednom m\u00edst\u011b, hroz\u00ed, \u017ee v p\u0159\u00edpad\u011b hacknut\u00ed nebo zapomenut\u00ed hlavn\u00edho hesla ztrat\u00edte p\u0159\u00edstup ke v\u0161em sv\u00fdm \u00fa\u010dt\u016fm. Je nezbytn\u00e9 zvolit spolehliv\u00e9 hlavn\u00ed heslo a udr\u017eovat jeho bezpe\u010dnost. Z\u00e1vislost na spr\u00e1vci hesel: <\/p>\n

<\/div>\n

2. Pokud se spol\u00e9h\u00e1te na spr\u00e1vce hesel, z\u00e1vis\u00ed na n\u011bm i p\u0159\u00edstup k va\u0161im \u00fa\u010dt\u016fm. Va\u0161e schopnost p\u0159ihla\u0161ovat se k \u00fa\u010dt\u016fm m\u016f\u017ee b\u00fdt ovlivn\u011bna, pokud se spr\u00e1vce hesel dostane do provozn\u00edch probl\u00e9m\u016f nebo ukon\u010d\u00ed svou \u010dinnost. <\/p>\n

<\/div>\n

3. Potenci\u00e1ln\u00ed nedostatky: P\u0159esto\u017ee spr\u00e1vci hesel pou\u017e\u00edvaj\u00ed robustn\u00ed \u0161ifrov\u00e1n\u00ed a bezpe\u010dnostn\u00ed ochranu, jsou p\u0159esto n\u00e1chyln\u00ed k chyb\u00e1m. Va\u0161e hesla mohou b\u00fdt ohro\u017eena, pokud se objev\u00ed softwarov\u00e1 chyba nebo naru\u0161en\u00ed bezpe\u010dnosti. <\/p>\n

<\/div>\n

4. Slo\u017eitost pro n\u011bkter\u00e9 u\u017eivatele: Pro lidi, kte\u0159\u00ed nejsou technicky zdatn\u00ed nebo maj\u00ed probl\u00e9my s p\u0159izp\u016fsoben\u00edm se nov\u00fdm technologi\u00edm, m\u016f\u017ee b\u00fdt pou\u017e\u00edv\u00e1n\u00ed spr\u00e1vce hesel n\u00e1ro\u010dn\u00e9 na u\u010den\u00ed. Pro n\u011bkter\u00e9 u\u017eivatele m\u016f\u017ee b\u00fdt konfigurace a spr\u00e1va programu zastra\u0161uj\u00edc\u00ed. Obavy o p\u0159\u00edstupnost \u010d\u00edslo p\u011bt: Spr\u00e1vci hesel pot\u0159ebuj\u00ed p\u0159\u00edstup k va\u0161im p\u0159ihla\u0161ovac\u00edm \u00fadaj\u016fm na n\u011bkolika za\u0159\u00edzen\u00edch. Z\u00edsk\u00e1n\u00ed hesel by mohlo b\u00fdt n\u00e1ro\u010dn\u00e9, pokud nem\u00e1te p\u0159\u00edstup k aplikaci spr\u00e1vce hesel nebo pokud pou\u017e\u00edv\u00e1te sd\u00edlen\u00fd po\u010d\u00edta\u010d. <\/p>\n

<\/div>\n

I kdy\u017e tyto nev\u00fdhody existuj\u00ed, je d\u016fle\u017eit\u00e9 si uv\u011bdomit, \u017ee pou\u017e\u00edv\u00e1n\u00ed spr\u00e1vce hesel m\u00e1 obvykle v\u00edce v\u00fdhod ne\u017e probl\u00e9m\u016f. Pro omezen\u00ed potenci\u00e1ln\u00edch nev\u00fdhod se v\u017edy doporu\u010duje zv\u00e1\u017eit v\u00fdhody a nev\u00fdhody a vybrat si renomovan\u00e9ho a d\u016fv\u011bryhodn\u00e9ho spr\u00e1vce hesel. <\/p>\n<\/div>\n

\n
Pro\u010d jsou spr\u00e1vci hesel \u0161patn\u00fd n\u00e1pad?<\/div>\n

P\u0159esto\u017ee je pou\u017e\u00edv\u00e1n\u00ed spr\u00e1vce hesel obecn\u011b pova\u017eov\u00e1no za dobr\u00fd bezpe\u010dnostn\u00ed postup a m\u00e1 \u0159adu v\u00fdhod, n\u011bkte\u0159\u00ed lid\u00e9 s n\u00edm mohou nesouhlasit z n\u00e1sleduj\u00edc\u00edch d\u016fvod\u016f: Spr\u00e1vci hesel ukl\u00e1daj\u00ed v\u0161echna va\u0161e hesla na jednom m\u00edst\u011b, co\u017e vytv\u00e1\u0159\u00ed jedin\u00fd bod selh\u00e1n\u00ed. Cel\u00fd seznam va\u0161ich hesel m\u016f\u017ee b\u00fdt zve\u0159ejn\u011bn, pokud dojde ke kompromitaci spr\u00e1vce hesel, a\u0165 u\u017e hackersk\u00fdm \u00fatokem nebo chybou. 2. Z\u00e1vislost na hlavn\u00edm hesle: Pro p\u0159\u00edstup k hesl\u016fm ulo\u017een\u00fdm ve spr\u00e1vc\u00edch hesel je nutn\u00e9 siln\u00e9 hlavn\u00ed heslo. Pokud toto hlavn\u00ed heslo zapomenete nebo ztrat\u00edte, m\u016f\u017eete ztratit p\u0159\u00edstup ke v\u0161em ulo\u017een\u00fdm hesl\u016fm, co\u017e by zt\u00ed\u017eilo nebo znemo\u017enilo jeho obnoven\u00ed. 3. Mo\u017enost \u00faniku dat: Podniky spravuj\u00edc\u00ed hesla mohou b\u00fdt navzdory bezpe\u010dnostn\u00edm opat\u0159en\u00edm st\u00e1le vystaveny riziku naru\u0161en\u00ed bezpe\u010dnosti dat. V p\u0159\u00edpad\u011b naru\u0161en\u00ed by mohl b\u00fdt zve\u0159ejn\u011bn cel\u00fd v\u00e1\u0161 seznam hesel. 4. D\u016fv\u011b\u0159ujte poskytovatel\u016fm t\u0159et\u00edch stran: Pou\u017e\u00edv\u00e1n\u00ed spr\u00e1vc\u016f hesel p\u0159edpokl\u00e1d\u00e1 d\u016fv\u011bru v bezpe\u010dnost poskytovatele. Va\u0161e p\u0159ihla\u0161ovac\u00ed \u00fadaje mohou b\u00fdt ohro\u017eeny, pokud ned\u016fv\u011b\u0159ujete bezpe\u010dnostn\u00edm opat\u0159en\u00edm vybran\u00e9ho spr\u00e1vce hesel. Spr\u00e1vci hesel se mohou obt\u00ed\u017en\u011b nastavovat a spravovat, co\u017e m\u016f\u017ee v\u00e9st k chyb\u00e1m u\u017eivatel\u016f. <\/p>\n

<\/div>\n

5. Slo\u017eitost. Bezpe\u010dnost va\u0161ich hesel by mohla b\u00fdt ohro\u017eena, pokud ud\u011bl\u00e1te chyby p\u0159i nastaven\u00ed nebo spr\u00e1vce hesel nespr\u00e1vn\u011b pou\u017eijete. <\/p>\n

<\/div>\n

Je d\u016fle\u017eit\u00e9 si uv\u011bdomit, \u017ee navzdory t\u011bmto obav\u00e1m jsou spr\u00e1vci hesel obvykle pova\u017eov\u00e1ni za bezpe\u010dn\u00fd zp\u016fsob pr\u00e1ce s hesly a jsou doporu\u010dov\u00e1ni odborn\u00edky na kybernetickou bezpe\u010dnost. Pro sn\u00ed\u017een\u00ed p\u0159\u00edpadn\u00fdch nebezpe\u010d\u00ed je z\u00e1sadn\u00ed pou\u017e\u00edvat d\u016fv\u011bryhodn\u00e9ho spr\u00e1vce hesel, \u010dasto aktualizovat hlavn\u00ed heslo a dodr\u017eovat osv\u011bd\u010den\u00e9 postupy obecn\u00e9 kybernetick\u00e9 hygieny.<\/p>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"

V sou\u010dasn\u00e9 digit\u00e1ln\u00ed dob\u011b, kdy m\u00e1me tolik online \u00fa\u010dt\u016f a slu\u017eeb, kter\u00e9 vy\u017eaduj\u00ed hesla, m\u016f\u017ee b\u00fdt obt\u00ed\u017en\u00e9 si je v\u0161echna zapamatovat. Spr\u00e1vci hesel mohou b\u00fdt v t\u00e9to situaci u\u017eite\u010dn\u00ed. Abychom si mohli vytvo\u0159it siln\u00e1, jedine\u010dn\u00e1 hesla pro ka\u017ed\u00fd \u00fa\u010det, ani\u017e bychom je museli sledovat, m\u016f\u017eeme pou\u017e\u00edt spr\u00e1vce hesel, co\u017e je software ur\u010den\u00fd k bezpe\u010dn\u00e9mu ukl\u00e1d\u00e1n\u00ed … \u010c\u00edst d\u00e1l<\/a><\/p>\n","protected":false},"author":1515,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1688],"tags":[],"class_list":["post-6760","post","type-post","status-publish","format-standard","hentry","category-cybersecurity"],"_links":{"self":[{"href":"https:\/\/tech-lib.eu\/tech\/wp-json\/wp\/v2\/posts\/6760","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/tech-lib.eu\/tech\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/tech-lib.eu\/tech\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/tech-lib.eu\/tech\/wp-json\/wp\/v2\/users\/1515"}],"replies":[{"embeddable":true,"href":"https:\/\/tech-lib.eu\/tech\/wp-json\/wp\/v2\/comments?post=6760"}],"version-history":[{"count":0,"href":"https:\/\/tech-lib.eu\/tech\/wp-json\/wp\/v2\/posts\/6760\/revisions"}],"wp:attachment":[{"href":"https:\/\/tech-lib.eu\/tech\/wp-json\/wp\/v2\/media?parent=6760"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/tech-lib.eu\/tech\/wp-json\/wp\/v2\/categories?post=6760"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/tech-lib.eu\/tech\/wp-json\/wp\/v2\/tags?post=6760"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}