My Gmail Id was hacked. Most likely it was at the cyber cafe where I had actually chosen surfing the web. Some prankster might have installed keylogger or something. Thankfully, the email id I used at the cafe was not important. However the problem of security made me consider for a solution for such scenarios where we are required to rely on others to protect their computers and networks.
The only thing I might think of is semi login. How about making a provision of logging in with restricted powers and access. Similar to linux computers where we are encouraged not to login in with full administrative powers. However instead of having various username, we could have only different passwords. The password entered in the password box ought to decide whether the user wants to login utilizing complete login or semi login. This will relieve the users from the inconveniences of keeping in mind many Usernames.
For instance, expect “firstname.lastname@example.org” has the main password as “qwerty” and semi login password as “asdf”. When visiting to the service if the user enters the username “email@example.com” and the password as “asdf” then the provider need to understand that the user wants to login using semi-login. Otherwise, we can make an option button that the user can choose if he wishes to use the semi-login performance so that the service provider is alerted about it.
Think about a situation for a Gmail account. Google has dominated our online world. It is the gmail login for our e-mail, adwords, adsense, shopping account in addition to utilized as an username for 3rd party services like Paypal, etc. If for some reason the Gmail account has been compromised then all other accounts are likewise in peril. This all might take place just because we wished to examine a good friend’s e-mail forward or a newsletter. The service is having something as semi-login. When logged in utilizing semi-login, we need to just have access to emails which are pre-decided by the user to be revealed when he remains in complete login.
That is, the user can choose what all emails and which senders’ e-mails can be accessed in semi-login. The user can quickly make the “funny” mails, mail forwards and newsletters, ie. the unimportant things, accessible by means of semi-login. He can not access other mails or change any account info. The user can decide what all things can be accessed and modified when in semi login. Which mails he wishes to access and which mail he can reply to.
Likewise, in AdSense or paypal we can utilize semi-login to check today’s revenues and nothing else. No inside data like channels, previous profits, etc or account access, only the figure that will let the user understand how much he has made today. Even if the semi login password is compromised, the hacker can just access the unimportant mails.
The advantage of semi-login password is that the user can use the very same password for semi-login for all his online accounts as it will not make much distinction in case this password is understood to another person. As his primary passwords will be different from the semi login password, in addition to from each other, the hacker can not cause any damage. For instance, suppose the main password for “firstname.lastname@example.org” is “qwerty” and for “email@example.com” is “zxcvbn” then we can utilize a semi login password for both the account “asdfg”. However, online services should implement policies to secure the primary password like not allowing the semi login password to be a sub-string of the main password, and so on
Edit: Unimportant mails would consist of newsletters, etc. You can likewise mark any e-mail you get as unimportant. Likewise, you can filter incoming mails from friends who send email forwards, and so on. Naturally, the apparent issue is that what if that buddy sends out crucial e-mail. Nevertheless, normally the majority of people have different email represent sending out and receiving crucial e-mails and for leisure functions like sending forwards.