My comments. Worth what you paid for 'em.
You need to scratch the "no importance". Old folks can take things literally and focus on the "no importance" part. The problem is that too many sites that should know better have had user data stolen. Yahoo, Talk Talk, BA, FB, T-Mobile, Marriot etc. As well as councils and charities in the UK.
Scratch the "block you out" bit. Doesn't always happen. I'd put something like 'Once they are in they can start to impersonate you'.
I'd add "or credit card accounts" after "internet banking".
Don't say "long and complicated" say "longer but easy to remember". Don't use dictionary words, they're easy to crack but combining words and adding uppercase, punctuation and numbers is OK. eg. "Big3in.Bolt", "Litre-of0il".
Best not to write them down but they can write down something innocuous to jog their memory. ie A shopping list in a kitchen drawer with "Large bolts 3.99 each", "Small Castrol GTX".
Explain what two-factor authorisation actually is (in simple terms or call it something different), don't frighten them with jargon. Tell them that's it's just a way to try and stop the bad guys by confirming that it really is them.
Tell them that if they install a good password manager they would only need to remember one password but they should ask for more info if interested. (They won't).
And don't let a browser store important passwords please.
Your biggest problem is keeping it simple and avoiding information overload. Otherwise they'll just switch off. Been there.
|