1Password for iOS/Mac Gets Price Cut Ahead of Upcoming Free iOS 8 Update

[AGKyle]

I have a few questions that hopefully haven't been asked.

Does 1Password work with your AppleID password?
If I decided to buy an app after a reboot and Apple's stupid policy of forcing me to also enter my password instead of TouchID, will 1Password enter it for me?
Or do I have to thumb type a 28 character secure generated password?

If I have 1Password generate new passwords for all the forums I use from my iOS device...
I then go home on my windows machine and log in, will I have to buy the desktop version also to get access?
That is a big concern for me. I can't see paying another $35 when I just need the app on my phone to handle the locker part of it.

Thanks,

We cannot enter the password into the popup fields that Apple asks for your AppleID password in, no. It's a limitation of the extensions framework.

What I do for my AppleID password is use a diceware password. You can google them for a password generator online that would make them. I think I tend to use this one:

https://www.xkpasswd.net/c/index.cgi

It uses words to generate the password and are far easier to type and remember. So, I remember more than just one 1 password but that's okay. Here's the list I remember:

1) Master Password
2) Dropbox Password
3) Computer login password
4) AppleID password
5) Bank PIN for debit card

Everything else is remembered in 1Password. I think I more or less remember the PIN by use, and well, the rest just took a week or so to fully remember and they're written down in a safe place just in case I do happen to flub it up

Yes, the Windows version is a separate purchase. The total for Windows and iOS would come to $45. That's not too bad given that you're going to use it daily on a regular basis. You'll end up getting hours and hours of use out of it over the next couple years. Plus the security that comes with it.

If it's really that big of a deal with the Windows version private message me and we'll work it out.

 

[bobright]

The built in browser was of course the only way to do what we needed to do so I am sorry you didn't like it but it was the only choice we had. The new extension system in iOS 8 makes it possible to do some great things that users like yourself will love

The update for iOS 8 will be a free upgrade for existing users. This does include TouchID support, Safari Filling and Application Filling extensions.

I figured that that's fine looks like I got it at the perfect time. When you say TouchID support will be included is that just for your main log in or would it be somehow built in to use as you would filling in passwords e.g. singing into a forum?

 

[bobright]

You don't use an easy one for your master password. Something memorable but at the same time complex so would take a long time to crack.

Hackers would have to get access to and be interested in you and your devices/cloud storage in the first place as 1Password vaults are not stored on a central server, but if using the cloud sync are distributed over the web, a different location for each file, so not easy to harvest.

Add to that fact that AgileBits business depends on being secure and you pay a not insignificant price.

Look at the reviews - a 4-5* app.

You have to pay for two versions of an app? iOS and Mac/Windows- you would have to do this with a lot of paid apps.

Did I like paying so much? No, I waited until the app came on sale.

Was it worth it? Where else am I going to store my passwords and who am I willing to trust?

They seriously make you pay all over AGAIN for every update? So if the initial iOS 8 update is free...say there's an update to the app when firmware 8.0.1 or what have you comes out we'd be charged all over again? If so that's a bummer. I could see when iOS 9 comes out but we shouldn't be charged for incremental updates

 

[VoR]

I'm a big fan of keepass for this sort of thing - Convienient to use like most password managers compared to pgp etc, cross-platform (assuming you're sensible with the client choice) and oss.

I think trust issues are quite limited with a relatively transparent company like agilebits (as much as they can be anyway) but I've never used 1password and certainly don't feel the need to pay (especially for multiple versions....) considering the alternatives.

 

[AGKyle]

I figured that that's fine looks like I got it at the perfect time. When you say TouchID support will be included is that just for your main log in or would it be somehow built in to use as you would filling in passwords e.g. singing into a forum?

TouchID can be used to unlock the application and the extension, should you enable that option. It's not enabled by default, when enabled we store the master password in the iOS keychain with two important considerations.

1) The first is that the item in the keychain will never be synced using iCloud Keychain and never leaves the phone. Period.

2) The second is that the item can only be accessed by 1Password, and it has to be unlocked by either TouchID or the user's phone password.

Once stored we can use the TouchID response (Yes/No) to access the item in the iOS keychain and unlock your vaults.

Hope that clears it up!

They seriously make you pay all over AGAIN for every update? So if the initial iOS 8 update is free...say there's an update to the app when firmware 8.0.1 or what have you comes out we'd be charged all over again? If so that's a bummer. I could see when iOS 9 comes out but we shouldn't be charged for incremental updates

No, not every update. We made the previous version back when Apps were new to iOS. Users who purchased that version got version 2 for free. Users who purchased version 1 and 2 got version 3 for free. That was nearing 5 years of free updates. We then had version 4 come out and it was a new app. That was an upgrade for all users. Users who purchased within 30 days were able to write in to us and we either gave them a promo code, a gift code, a gift card or a refund for their purchase via other means to get version 4 for free. We really went out of our way to help those users.

Version 4 is the current version out. Version 3 works on iOS 7 still today. Version 4 first required iOS 6 when it was released, the last big update (4.5) required iOS 7. The next version will require iOS 8 but also be compatible with that version of iOS. None of those were paid updates.

Hope that clears it up.

----------

I'm a big fan of keepass for this sort of thing - Convienient to use like most password managers compared to pgp etc, cross-platform (assuming you're sensible with the client choice) and oss.

I think trust issues are quite limited with a relatively transparent company like agilebits (as much as they can be anyway) but I've never used 1password and certainly don't feel the need to pay (especially for multiple versions....) considering the alternatives.

Just pointing out that OpenSSL is OSS (Open Source Software, for those not familiar with the terminology) yet we still had Heartbleed

I don't think we can correlate "security" with whether an application is open source or closed source. Sure, you can review open source software, but not many will do that and it's kind of proven by the fact the heartbleed bug wasn't found until well after it was mistakenly added.

For every instance of good implementation in OSS you'll find another that was badly implemented. I'm sure the same applies to closed source software. We've had our implementation details reviewed by the security researchers out there and they all seem happy to tell us we're doing it right.

That said, our stance has always been that we want users using some form of password management, even if it isn't our own. By all means, use one of the others out there if you want, and if they work for you that's far better than not using one at all. Just make sure you use it in the right way

 

[stiwi]

I should really use a password manager, but then again... there is too much apps that nowadays "needs" to be updated each and every year for every updated OS... A neverending subscription and I think I just need to have less passwords and less technical dependencies instead.

This is the reason I never bought 1Password. Their shady policy of chargeable upgrades are appalling. I understand upgrades, new features, app development etc. but should you wish to make the app compatible with new iOS you have to buy a new version sooner or later. No one also knows if 1Password 5 is not going to be released soon with native iOS 8 look & feel bla bla. Such companies are very short sighted, because at the end of the day they are charging you for EXACTLY the same purpose you bought their program for the 1st time: storing and securing your passwords.

Please don't forget that 1Password is getting new users daily, so it is no excuse to charge old customers for app upgrades and iOS compatibility because of app development.

This is the reason I am using mSecure. I frankly don't need all the bells and whistles or browsers integration. I also read some time ago that mSecure has one of the better encryption method being used (256-Bit Blowfish) across password managers. Some references here.

 

[Meus Me]

We're offering filling into Safari in the iOS 8 application, which as the parent article points out is being included free for users who purchase the current version.

We're also including application extensions so that other applications can link into 1Password to have us fill into their apps as well. The thing that wasn't pointed out very well in any of the articles is that other apps can also CREATE items in 1Password as well using these Application Extensions, so it means you can open an app that supports it, sign up and it can ask to save it into 1Password.

We won't be auto-filling into anything as we think leaving that up to the user is the best choice. The user must explicitly choose to fill. We feel that if we fill without their action then we're possibly deceiving them and not living up to the trust that people expect from us.

If that's the case, then I'll wait to see the level of third party support for 1Password because that would be a selling point for me (unless third party apps gain access to Keychain). Hopefully the app will be reasonably priced going forward.

 

[cjmillsnun]

All I need to say...

cmd \ is my password.

 

[philosopherdog]

I had a bit of a bad experience with an earlier version of this app and tried to go with lastpass. Anyhow, I eventually couldn't deal with Lastpass's lack of proper support for ios. I came back to 1Password and I think it's easily one of the best options for password management going. Apple does have iCloud Keychain which I also use. I'm using a mix of both solutions. Once 1Password starts using extensions in ios perhaps I could turn off iCloud Keychain to keep things simpler. 1Password is expensive, but it's a great solution.

 

[mdhwoods]

Just bought the ios version. While clunky to log into apps and sites it works well. It will be even better when it integrates with safari. Also installed the trial on windows. This is where the app shines. Having the database synced with Dropbox allows easy login to all sites via Firefox etc. I also have macs so that's my next install. Will probably purchase the win/mac package once I use it for a bit. While I has a good password for all sites this is a great app.

Those that don't want an app like this can try the way I have been doing passwords forever. Create a base password say. 438@#willow and append the end with 3 characters from the site you are logging into. Macrumors would be 438@#willowmac. This forces you to only remember the 1st part. Works well on most sites. Does create issues in sites that offer poor password combos. Ie no special characters.

So far enjoying 1 password. And 10.00 is a cheap price to secure your important banking info.

 

[AGKyle]

Just bought the ios version. While clunky to log into apps and sites it works well. It will be even better when it integrates with safari. Also installed the trial on windows. This is where the app shines. Having the database synced with Dropbox allows easy login to all sites via Firefox etc. I also have macs so that's my next install. Will probably purchase the win/mac package once I use it for a bit. While I has a good password for all sites this is a great app.

Those that don't want an app like this can try the way I have been doing passwords forever. Create a base password say. 438@#willow and append the end with 3 characters from the site you are logging into. Macrumors would be 438@#willowmac. This forces you to only remember the 1st part. Works well on most sites. Does create issues in sites that offer poor password combos. Ie no special characters.

So far enjoying 1 password. And 10.00 is a cheap price to secure your important banking info.

Great to hear you're enjoying the apps

I would not suggest using that method above for passwords. See here:

http://blog.agilebits.com/2012/11/08/dont-trust-a-password-management-system-you-design-yourself/

If you ever have any questions about 1Password, let me know

 

[whsbuss]

They seriously make you pay all over AGAIN for every update? So if the initial iOS 8 update is free...say there's an update to the app when firmware 8.0.1 or what have you comes out we'd be charged all over again? If so that's a bummer. I could see when iOS 9 comes out but we shouldn't be charged for incremental updates

Well if their history means anything, yes they do charge for updates. Not point updates or bug fixes, but updates with changed features.

 

[skywalkerr69]

Educate yourself before commenting - 1Password does not store passwords on any server, it is an offline app (with optional iCloud / Dropbox / Wi-fi sync)

Someone telling someone to check their "facts" and uses Wikipedia as their source. Permission to lol

 

[AGKyle]

Well if their history means anything, yes they do charge for updates. Not point updates or bug fixes, but updates with changed features.

Here are the updates we charged for:

Version 3 for Mac ($20 for existing users of version 1 and 2)

Six years passed between version 3 and 4.

Version 4 for Mac ($25 for existing users of version 1-3)

Version 4 for iOS (Was on sale for well over 30 days at $7.99 to let existing users upgrade as cheaply as possible. It went on sale at that price several times after to facilitate it further)

Version 4 for Windows ($25 for existing users, but we have all users from 2013 until June 2014 free upgrades to version 4, that's nearly 18 months)

We've been around since 2006. We've charged for 4 updates in the 8 years since we started

 

[whsbuss]

Here are the updates we charged for:

Version 3 for Mac ($20 for existing users of version 1 and 2)

Six years passed between version 3 and 4.

Version 4 for Mac ($25 for existing users of version 1-3)

Version 4 for iOS (Was on sale for well over 30 days at $7.99 to let existing users upgrade as cheaply as possible. It went on sale at that price several times after to facilitate it further)

Version 4 for Windows ($25 for existing users, but we have all users from 2013 until June 2014 free upgrades to version 4, that's nearly 18 months)

We've been around since 2006. We've charged for 4 updates in the 8 years since we started

Thank you for the official response. Yes as you point out only 4 updates have been imposed. What bothers me is why you are here defending 1Password? I've always felt if a product is great, it (or its customers) will speak for itself.

 

[Primejimbo]

Thank you for the official response. Yes as you point out only 4 updates have been imposed. What bothers me is why you are here defending 1Password? I've always felt if a product is great, it (or its customers) will speak for itself.

Look at his signature...

Personally I think it's great here's here to offere help and advice. It's on this very site that he helped me with some questions.
I don't think it's "defending", but more that he is here so people hear the correct info from the source. Because there are no lies or people giving misleading info on the internet

 

[AGKyle]

Thank you for the official response. Yes as you point out only 4 updates have been imposed. What bothers me is why you are here defending 1Password? I've always felt if a product is great, it (or its customers) will speak for itself.

I'm not really defending our app at all. People have questions and I'm happy to answer them. Being transparent about the past upgrades may help people decide and I'd rather they have real data to use in that decision.

You can read through the rest of my responses in this thread and see several times that I even suggest using another application if that works for them. We're here to help, even if it isn't our application that is being purchased.

You'll also note in my past post history that I've been active in every major 1Password announcement made on this site for the last couple years. It's just something I do these days, I like this place so I contribute the best I can.

 

[Four oF NINE]

If iCloud Keychain didn't already do credit cards and web passwords across my Apple gear, I'd be all over this. I'd also be interested if I used more apps that required a login.

I guess I just don't need the functionality. I would like my passwords and CCs synced to my Boot Camp partition too, but it's an expensive solution compared to, say, just using Chrome for my humble PC sync needs.

1Password is more secure than keychain.

 

[OS X Dude]

1Password for iOS/Mac Gets Price Cut Ahead of Upcoming Free iOS 8 Update

1Password is more secure than keychain.

But how much more so? Apple won't exactly have the easiest servers to get in, although we do of course have our governments to contend with. But they're not likely themselves to pilfer my credit card details.

Facts are, I haven't yet found a story where someone has had their data compromised and iCloud Keychain has been the source of the problem.

Don't get me wrong, I love that 1P is cross-platform. That's a big draw for me, and I love what these guys do and how seriously they take their customers' privacy/security. But I won't support their policy of essentially paying for updates that simply add compatibility. Of course, other things change too, but not by any measure that I as a consumer consider them worth paying to upgrade for.

 

[bobright]

Here are the updates we charged for:

Version 3 for Mac ($20 for existing users of version 1 and 2)

Six years passed between version 3 and 4.

Version 4 for Mac ($25 for existing users of version 1-3)

Version 4 for iOS (Was on sale for well over 30 days at $7.99 to let existing users upgrade as cheaply as possible. It went on sale at that price several times after to facilitate it further)

Version 4 for Windows ($25 for existing users, but we have all users from 2013 until June 2014 free upgrades to version 4, that's nearly 18 months)

We've been around since 2006. We've charged for 4 updates in the 8 years since we started

So we should be covered the duration of iOS 8 at least e.g couple to few years w/ a purchase right now? If so as I said that is very fair.

 

[Mollan]

I'm using it from one day and I think it's a quite good app, which makes me feel quite secure about the data I put in. I have some concerns regarding the filling method chosen by AgileBits.

On Mac: a OS prompt asks me the password for a service (e.g. GMail) with the usual dialog box. The password is stored in 1Password, so through 1Password mini I scroll to the login information; the problem is: if I click a login information, instead of filling the dialog box with the right password, it opens the relative website, i.e. GMail.com. The same thing happens with the webpages. Before writing this post, this forum asked me for ID and psw. Then I followed the procedure with iPassword mini but clicking on the login information opens another macrumors webpage. The correct procedure would be to open the login item and copy manually the ID and/or the password. It's pretty slow for me. Might it be possible to have a toggle in the preferences to chose the behavior of the 1Password mini when clicking a login item?

 

[haruhiko]

I'm using it from one day and I think it's a quite good app, which makes me feel quite secure about the data I put in. I have some concerns regarding the filling method chosen by AgileBits.

On Mac: a OS prompt asks me the password for a service (e.g. GMail) with the usual dialog box. The password is stored in 1Password, so through 1Password mini I scroll to the login information; the problem is: if I click a login information, instead of filling the dialog box with the right password, it opens the relative website, i.e. GMail.com. The same thing happens with the webpages. Before writing this post, this forum asked me for ID and psw. Then I followed the procedure with iPassword mini but clicking on the login information opens another macrumors webpage. The correct procedure would be to open the login item and copy manually the ID and/or the password. It's pretty slow for me. Might it be possible to have a toggle in the preferences to chose the behavior of the 1Password mini when clicking a login item?

Have you installed the browser extensions?

 

[Mollan]

Have you installed the browser extensions?

Yes For the browser part I think I have found the solution with the browser extension (it was not working properly this morning (I'm with Yosemite) and it forced me to pass by 1Password mini. But what about the other Mac OS Apps, is it possibile to have fill on click with them?

 

[AGKyle]

So we should be covered the duration of iOS 8 at least e.g couple to few years w/ a purchase right now? If so as I said that is very fair.

I can't promise anything long term. We tend to just not comment on future plans primarily because things change. If we say something now we feel obligated to support it and it may not be the best thing for anyone.

That said, version 4 originally came out in December of 2012. We have charged for no updates since then on iOS. The next update that supports TouchID, App Extensions and Safari Extensions is a free update as well.

One thing I think people are confusing is iOS updates and app updates. These may not always coincide. iOS updates come yearly. App updates may not come as often. Many times applications that work with iOS 7 will work with iOS 8 without any modifications. I think one major exception to this is iCloud enabled applications this time around.

I'm pretty sure you'll be happy purchasing 1Password now though. You'll get plenty of use out of it and we'll be supporting iOS 8 with this next update.

I'm using it from one day and I think it's a quite good app, which makes me feel quite secure about the data I put in. I have some concerns regarding the filling method chosen by AgileBits.

On Mac: a OS prompt asks me the password for a service (e.g. GMail) with the usual dialog box. The password is stored in 1Password, so through 1Password mini I scroll to the login information; the problem is: if I click a login information, instead of filling the dialog box with the right password, it opens the relative website, i.e. GMail.com. The same thing happens with the webpages. Before writing this post, this forum asked me for ID and psw. Then I followed the procedure with iPassword mini but clicking on the login information opens another macrumors webpage. The correct procedure would be to open the login item and copy manually the ID and/or the password. It's pretty slow for me. Might it be possible to have a toggle in the preferences to chose the behavior of the 1Password mini when clicking a login item?

Yes For the browser part I think I have found the solution with the browser extension (it was not working properly this morning (I'm with Yosemite) and it forced me to pass by 1Password mini. But what about the other Mac OS Apps, is it possibile to have fill on click with them?

There's no way to fill into other applications on Mac OS X right now. Not sure how this will work in the future but I'll be sure to pass your request for this type of feature along

If you run into any trouble with Yosemite, make sure you're using the latest beta of 1Password 4 (it's available from our website under the Downloads page). The current stable version may not work quite as well under Yosemite as the beta version of 1Password. Just be aware that using beta version of OS's and Apps means you may encounter bugs.

 

[zioxide]

This is the reason I never bought 1Password. Their shady policy of chargeable upgrades are appalling. I understand upgrades, new features, app development etc. but should you wish to make the app compatible with new iOS you have to buy a new version sooner or later. No one also knows if 1Password 5 is not going to be released soon with native iOS 8 look & feel bla bla. Such companies are very short sighted, because at the end of the day they are charging you for EXACTLY the same purpose you bought their program for the 1st time: storing and securing your passwords.

Please don't forget that 1Password is getting new users daily, so it is no excuse to charge old customers for app upgrades and iOS compatibility because of app development.

This is the reason I am using mSecure. I frankly don't need all the bells and whistles or browsers integration. I also read some time ago that mSecure has one of the better encryption method being used (256-Bit Blowfish) across password managers. Some references here.

What? This is no different than Adobe charging for a new edition of Photoshop or Microsoft charging if you want to buy the latest edition of Office.

Since when is a software company supposed to give all its users unlimited updates forever because they bought one version in the past? Software companies wouldn't even be able to survive with that business model.