Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
safest password manager: splashID or 1 password or?
- Thread starter alainr
- Start date
- Sort by reaction score
I don't see a problem with any password manager like 1password or splashid. I have used Splashid since my Palm days and I still use it on my Mac, iPad and iPhone. I've also used 1password briefly but I like splashid better.
I don't recommend integrating any password safe with your browser. It's just a personal preference for me but I prefer to type the password every time even if it means launching an app to look it up and then copying and pasting it to the web site or app that is asking for it. I turned off browser integration for Splashid and I doubt I will ever turn it back on. I also disable all the various browser features (ie firefox, safari and chrome offering to "remember passwords") and extensions to remember passwords or back them up to some server someplace (ie xmarks or ff sync offering to back up passwords).
I've never heard of SplashID, but I've been using 1Pawword for the past 2 years or so, and I love it. Having my passwords available everywhere (Mac, iPhone, iPad), makes going online from anywhere much more convenient, without losing the security of having strong passwords. (I choose passwords that are pretty much impossible to remember by themselves.)
As long as you choose a master password that's easy to remember, but long enough to be nearly impossible to guess, you're all set
As long as you choose a master password that's easy to remember, but long enough to be nearly impossible to guess, you're all set
got to just throw a vote in for Datainherit.
free app, yes they are trying to sell further services but you dont have to buy them. very pro app, very simple, you can enter all your stuff online which also means you can check it online too if you are without your phone.
also, if you have no signal you can access the password list offline too.
cool app.
free app, yes they are trying to sell further services but you dont have to buy them. very pro app, very simple, you can enter all your stuff online which also means you can check it online too if you are without your phone.
also, if you have no signal you can access the password list offline too.
cool app.
SplashID
From security perspective i have always preferred SplashID. Normally , other tools impose security by compromising on user experience and ease of use. SPLASHID is one the best password management tool which has both. I have been using it on my laptop and blackberry handset.
From security perspective i have always preferred SplashID. Normally , other tools impose security by compromising on user experience and ease of use. SPLASHID is one the best password management tool which has both. I have been using it on my laptop and blackberry handset.
While I can understand your hesitation to integrate the password manager, keep in mind that use of the clipboard actually makes it easier from some rouge to intercept the password compared to having the password manager submitting the credentials directly on the page. Ups and downs, it is not black and white.
I prefer LastPass which integrates into your browser's on OS X, Linux, and Windows and they even have an iOS app, as well as Android and a bunch of others. They have quite the endorsements as well.
mSecure
I am throwing my vote in for mSecure. I've been using it since it came out in the App Store. I like that it does not sync with "their" servers. I also have the Mac OS version that I sync with my iPhone so I have a backup.
My biggest concern is online storage. mSecure will let you sync with the likes of Dropbox which I love to use for work and personal storage, but I'm hesitant to back up mSecure to. As muct as I like and recommend mSecure, I still don't store my sensitive info like social security number or back account numbers in it. For those, I use a small address box I keep hidden at home.
I am throwing my vote in for mSecure. I've been using it since it came out in the App Store. I like that it does not sync with "their" servers. I also have the Mac OS version that I sync with my iPhone so I have a backup.
My biggest concern is online storage. mSecure will let you sync with the likes of Dropbox which I love to use for work and personal storage, but I'm hesitant to back up mSecure to. As muct as I like and recommend mSecure, I still don't store my sensitive info like social security number or back account numbers in it. For those, I use a small address box I keep hidden at home.
When I moved from windows to OSX last month I spent many hours online researching password managers. I found the Security Now podcasts to be one of the best sources of detailed information. There are lots of holes in the security of many of them, with Lastpass and 1Password coming out on top, IMHO. I tried both, since Lastpass is free if you don't need premium services, and 1Password has a 30 day free trial available on their website. Ultimately I went with 1Password because I wanted the option of a freestanding program and I wanted to keep all my data at 'home'. I use the app on my iPad and iPod also, and synching over wi-if is a snap. With Lastpass you have no choice but to store your information online, and despite Steve Gibson's research I was uneasy.
I am running 10.8 and find that last pass is unreliable...some days it works and other days it does not have a clue with the username and password
are. I guess its worth what we pay for it.
One of the reasons that I went with 1Password is that in addition to the browser extensions that Lastpass is based on, it has a freestanding app. I figured that the app would be less likely to "break" after OSX updates. Developers have access to OSX updates, but with the browser extensions they are also subject to interactions with other extensions.
Could be a bad install. Try deleting it and reinstalling it. I had an issue like that a couple of years ago and contacted their support. They were very helpful and quick to respond. Since then, I've had no problems at all. I use it in OS X, Windows, iOS, Chrome, Firefox, Safari and IE when I have to.
I have done it three times and keychain is the most worthless Apple Apps I have used but the big priority is interface with Facebook,iPhone, ipad
not the basics anymore.
ummmm....No password manager is safe if the password to unlock the password manager is insecure.
Yes, it is highly recommended. SplashData's SplashID Safe is the oldest and most reliable password security app I know. It continuously innovates and provide updates for most recent platform versions and it is well-known for excellent developer support. Because it expertly designed also as a sensitive data vault, it is perfectly safe for online banking purposes.
Long time SplashID user here. Have it on my pc, mac, and iphone. Love it, no reason to use anything else.
1Password actually inputs the password for you. Does SplashID have this capability?
1password for me is the best. I migrated from LastPass a few months ago and couldn't be happier.
I use iTunes: STRIP - Password Manager because of this Information Week article and this paper.
Hopefully there's other solid choices now too, but that's what I've been using. Note that I can't compare the actual interface, since I haven't tried any others. I was just concerned about security.
Hopefully there's other solid choices now too, but that's what I've been using. Note that I can't compare the actual interface, since I haven't tried any others. I was just concerned about security.
With regard to the information in those links about 1Password, those are very old news.
First, it refers only to 1Password 3 for iOS, which is no longer for sale, but even before that we improved things dramatically in a release just after that:
http://blog.agilebits.com/2012/03/16/strong-security-requires-strong-passwords/
http://blog.agilebits.com/2012/04/09/1password-ios-pbkdf2-goodness/
Also, the line in particular (they seem to love quoting this but not giving any context): " "When we recovered my master password in five seconds? That was a moment," he said."
This was not the master password they recovered, this was a 4 digit PIN code used to unlock the application. Any data protected by the master password (and a strong master password) would take significantly more time. Read the blog posts above, but their information is a tad misleading unless you know the full details and also does not apply at all in any way whatsoever to 1Password 4 for iOS.
Also, those papers are roughly 18 months old. Keep that in mind, and if you have questions regarding security and those you should always contact the vendor of the software and see what they can tell you. AgileBits has published several blog posts about these and you can find any information about it there, but again, none of this applies to version 4.
Thanks for this information, but asking a vendor about their own product and expecting to get complete and objective information is highly unrealistic.
The best information anybody can hope for in looking for a truly secure and layered data protection strategy is to read research and studies from qualified independent third parties.
1password to Lastpass convert
I personally use Lastpass over 1password for the primary reason that Lastpass will work natively in pretty much any browser. I use Macs at home but Win 7 at work with Google Chrome on my Win machine and Safari on Mac.
The big disadvantage with 1password for me was no Windows support unless you purchase the client again. Lastpass also has a mobile app but you have to use Lastpass premium which only runs $1/month, no big deal for that kind of functionality for me.
I personally use Lastpass over 1password for the primary reason that Lastpass will work natively in pretty much any browser. I use Macs at home but Win 7 at work with Google Chrome on my Win machine and Safari on Mac.
The big disadvantage with 1password for me was no Windows support unless you purchase the client again. Lastpass also has a mobile app but you have to use Lastpass premium which only runs $1/month, no big deal for that kind of functionality for me.
Sorry you feel that way. We're completely transparent with our users. If you have a question we'll get you the answer. Our blog posts should be pretty good at showing how we approach things.
We want our users to be informed and go out of our way to help. I can't vouch for other venders out there, but here at AgileBits, we do our best to help our users get the answers they need.
I worked for companies in the past that weren't up front with their users/customers and I vowed to never work for another one of those. Take that for what it is. Obviously I can't convince you that I'm telling the truth here, but, if you read my past posts on here you'll see I've done my best to help users get answers.
I've been using 1Password since version 3 (now running version 4), and it is fantastic. It works on every device I use (Mac, iOS, and Windows).
I was a user when that Information Week article came out, and I remember Kyle's speedy response. I feel even more secure with the new system of authentication in 1Password 4, especially because of the secure browser inside 1Password 4 so I don't have to use the iPhone's clipboard to enter passwords.
I really don't have anything bad to say about 1Password. I think it's telling that the only bad press that people can come up with is from a year and a half ago. And, the "research paper" that is linked is undated, but the file name suggests it was also written in 2012.
I was a user when that Information Week article came out, and I remember Kyle's speedy response. I feel even more secure with the new system of authentication in 1Password 4, especially because of the secure browser inside 1Password 4 so I don't have to use the iPhone's clipboard to enter passwords.
I really don't have anything bad to say about 1Password. I think it's telling that the only bad press that people can come up with is from a year and a half ago. And, the "research paper" that is linked is undated, but the file name suggests it was also written in 2012.
Last edited: