1. A software application that generates, stores, and retrieves strong unique passwords for every account, encrypting them with a master password so only one credential must be memorized
2. A measure of password unpredictability determined by the character set size and password length; longer passwords and larger character sets produce higher values
3. A privileged access model where elevated credentials are granted only when a specific task requires them, validated by a clearinghouse, with credentials expiring automatically after a short TTL
4. A security control that stores the last N passwords and prevents users from reusing any of them when they change their password, preventing predictable sequential password patterns