May 2014
E-mail this article

Insecurity

By David Feela

I patiently waited for the man in front of me to explain why the overdue video he checked out from the library could not have been checked out by him. He suggested the librarian had made a mistake, then quickly – after noticing the lethal quality of her glance – asked, rather rhetorically, if someone might have used his library card without his knowledge.

“It happens” was all she would say, then she double-checked some additional library records and concluded that, yes, the video was still missing. The man went away muttering the most ingenious combination of curses and apologies I’d ever heard.

It was my turn. I stated my business: May I please have your internet password?

She looked at me as if I’d arrived from a different planet.

“We don’t give out our password.”

“You mean the public isn’t allowed access to the internet at this library?”

“I didn’t say that. You will have to hand your device to me and I will input the password.”

I’ve never visited a library where this level of internet security served as the protocol. Edward Snowden would have been stymied had NSA headquarters followed the Bisbee Public Library model for thwarting troublemakers. I had no choice, so I passed my device across the desk. She tipped my iPad screen up so I couldn’t peek, then digitized my access with six strokes of one of her very nimble digits, then she gave me a final silent scan before returning my property, as if trying to assess the kind of threat I might pose.

My mistake. I asked for a password. Patrons of this library obviously know enough not to ask. Or, more than likely, I’m just being paranoid.

Password security is always big news in this cyber age, especially when a fresh batch of personal information has been hacked. I mean, who cares if our government spies on its own citizens. At least the White House isn’t involved in an Amazon spending spree using our credit-card information.

A recent review of internet habits cites last year’s top three passwords: 123456, the word “password,” and 12345678. Online users that pick these wispy strings of characters to foil hackers are considered “beyond help” by security experts, but handing your hardware to a complete stranger in order to access the internet doesn’t seem all that sophisticated either.

For five years I worked in the technical services department of a Carnegie library back in the 1970s, when anyone’s use of the phrase “the net” might refer to landing a big walleye. I typed using an IBM Selectric all the necessary cataloging information on recipe-sized cards and pockets that I pasted inside each new book so our print data could pass securely through the checkout line. A barcode still meant an abbreviated way to order a drink. Audio CDs were just becoming a snazzy new media available for the price of a library card.

Passwords were not a part of our library’s jargon. The best way to keep an unwashed public out was to lock the doors and hide the key. Near the end of the decade a new director hired a new boss for my department, a genius in technology, who gently nudged his employees toward the lexicon of a digitalized age.

It may be, despite nearly 40 years of sophistication and progress, that the public still has a lock-and-key mentality when it comes to internet security. We reuse the same old passwords at multiple sites, think our pet names could riddle Gollum, and we balk at building better data codes because it’s too difficult to remember our momentary inspiration.

I should know. I created a document three pages long with all my user names and passwords, a feat I thought awfully clever until my friend and ex-library boss explained how easily the document could be stolen. My cyberlife would become an open book. He showed me how to encrypt access to my cyberbiography, but recently I’ve forgotten the password that allows me access to my own cache of passwords.

My newest strategy (which I’m still theoretically testing) involves tattooing a single personal password in a very sensitive location on my body. The experts warn us that no method can ever be foolproof, and I’ll probably feel like a fool checking every time I forget my password, but at least I’m confident not too many complete strangers would ask to handle my device, nor would I be asking to handle theirs.

David Feela, an award-winning poet, essayist and author, writes from Montezuma County, Colo. See more of his work at http://feelasophy.weebly.com/.


E-mail this article