How simple isn’t it?

This video shows how simple it is to login to a site using a 128 character password stored in KeePassXC and using a Nitrokey FIDO U2F stick for two-factor authentication.

No password is stored in my web browser nor in the cloud.

Central parts for keeping my integrity

Nitrokey Pro, Nitrokey FIDO U2F and USB flash drive

Central parts for me to keep my privacy and integrity are my

Nitrokey Pro

The Nitrokey Pro stores the private part of my GnuPG key. If someone find a way to break into my computer they can’t download my private key.

The Nitrokey Pro also act as a Time-based One-time Password (TOTP) generator. This way I don’t need to use my smart phone, that could be hacked, to generate these passwords. TOTP codes are used when logging in to sites giving an enhanced security compared using only a long password.

I also use my Nitrokey Pro to store some long passwords.

These passwords are protected by a relatively short password but after three tries the Nitrokey Pro is locked forever.

Nitrokey FIDO U2F

My Nitrokey FIDO U2F works as a security key when logging in to sites. This is an easier way of enhancing my security compared to using a TOTP generator.

Just connect the Nitrokey FIDO U2F when asked and click on it and you are logged in.

USB flash drive

My USB flash drive is divided into one FAT partition and one LUKS encrypted partition.

I use the FAT partition to store my KeePassXC password file making it very easy for me to bring it from computer to computer. The LUKS encrypted partition I use for backing up files in clear (as the partition itself is encrypted).