With my1Password, you can securely access your data from your friend's house, your iPhone, Windows, and even Linux! Here is a sneak peak of the new my1Password web service: In the future I will post a complete guide to my1Password, as well as detail the security model we used to secure your information. How does My1Login's Password Strength Checker work? The password strength calculator uses a variety of techniques to check how strong a password is. It uses common password dictionaries, regular dictionaries, first name and last name dictionaries and others. My1Login is a wholly UK-Based Identity Provider offering Single Sign-On (SSO) to Web, Mobile and Windows Desktop Applications, Privileged Password Management, User Provisioning, Self-Service Password Reset and Multi-Factor Authentication.
With nearly every service-based web site and webapp requiring a user ID and password, life can quickly get complex. Or worse yet, life may become highly insecure. On the one hand, we all should be using complex passwords to thwart off hackers but remembering them becomes a huge burden. Most of the time, we fall into the habit of using a single, easy-to-remember password across a number of sites. Unfortunately, this is the online equivalent of handing your car keys off to a thief. Over the past year I have come to know and love the Mac software application, 1Password. 1Password provides a highly secure repository for all of your online passwords and other sensitive information. Through browser-level integration, you can quickly save passwords into the 1Password application and retrieve previously saved passwords all with the click of a button. 1Password can also generate complex passwords for you which will frustrate even the most ardent hacker. But alas, how does this review fit into a web site which focuses on web-based applications? My friends at 1Password have recently unveiled what I will go on the record as saying, the single most useful webapp to date. With my.1Password.com, users are now able to safely synchronize their passwords from their local 1Password Mac application to the web enabling access on virtually any browser. You can now safely randomize and strengthen your online logins while only needing to remember a single password.
(Scroll down for screen shots)
Practical Uses:
- Capture and store every web site login
- Tighten up your passwords, especially at sites which contain your financial information
- Auto populate the login fields using the included bookmarklet
- Save other sensitive information such as social security numbers for future reference
Insider Tips:
- Setup a reminder on your calendar to sync your information to My1Password from the Mac application once per week
- For greater safety use a different password for you My1Password account than your encryption password on the Mac application
My Passwords Password Manager
What We Liked:
- Highly secure web-based interface (data stored on the server remains encrypted at all times)
- Compatible with all modern web browsers — even the Apple iPhone
- Auto logout after predetermined time
What We Didn’t Like:
- Requires purchase of offline 1Password application
- Currently my.1Password.com is by invitation only (as of 06-10-08)
Alternatives:
- Clipperz – http://www.clipperz.com
- Passpack – http://www.passpack.com
Company Info:
- Launched in: December, 2007 (my.1password.com)
- Privately Held
- Headquarters: Toronto, Canada
- Founders: Dave Teare, Roustem Karimov
- Web site: https://my.1password.com/
Costs:
- 1Password software for Mac runs $34.95-$49.95
- My1Password is free for now but available to invited users only
Rating:
- 5 out of 5 (strongly recommended)
Disclosure: Affiliate links included in review
Submit a Comment
Is it actually safe to use Password Checkers?
If you’re reading this section, then good – the quickest way to get hacked online is to be too trusting or assume websites are automatically safe. It’s good to be cautious and it’s never a good idea to enter your legitimate credentials into any website you are not confident about. The ones to watch especially are those who ask you to input your credentials.
So, why is this Password Strength Meter safe?
- The passwords you type never leave your browser and we don’t store them (You can disconnect your internet connection and then try it if you wish)
- All the checking is done on the page you’re on, not on our servers
- Even if the password was sent to us, we wouldn’t actually know who you were anyway – so couldn’t match it up to any usernames or any websites you may visit
- We’re in the business of making people more secure online and the last thing we want to see is passwords being transmitted across the internet insecurely.
How does My1Login's Password Strength Checker work?
- The password strength calculator uses a variety of techniques to check how strong a password is. It uses common password dictionaries, regular dictionaries, first name and last name dictionaries and others. It also performs substitution attacks on these common words and names, replacing letters with numbers and symbols – for example it’ll replace A’s with 4’s and @’s, E’s with 3’s, I’s with 1’s and !’s and many more. Substitution is very typical by people who think they’re making passwords stronger – hackers know this though so it’s one of the first things hacking software uses to crack a password
- The password strength meter checks for sequences of characters being used such as '12345' or '67890'
- It even checks for proximity of characters on the keyboard such as 'qwert' or 'asdf'.
Common mistakes and misconceptions
- Replacing letters with digits and symbols. This technique is well known to hackers so swapping an 'E' for a '3' or a '5' for a '$' doesn't make you much more secure
- That meeting the minimum requirements for a password makes it strong. By today's standards, an 8-character password won't make you very secure
- That it’s fine to use the same password a lot as long as it’s strong – what if the website is hacked? Do you know how the website stores your password? What if they store it in plaintext?
Guilty
- Weak practices – storing passwords in the notes field on your phone, does it auto sync to the cloud, iCloud or Dropbox
- Putting them in a spreadsheet, even password protecting a spreadsheet doesn’t keep the information safe. Check out our blog on this and other security subjects.
What makes a strong password?
A strong password is one that’s either not easily guessed or not easily brute forced. To make it not easily guessed it can’t be a simple word, to make it not easily cracked it needs to be long and complex. Super computers can go through billions of attempts per second to guess a password. Try to make your passwords a minimum of 14 characters.
How Do I Change My 1password Password
Passphrase
My1password
A passphrase is simply a password, that’s longer, it could be a sentence, with spaces and punctuation in it. The benefit of a passphrase is that typically they’re easier to remember, but more difficult to crack due to their length. For every additional character in the length of a password or passphrase, the time it would take to break increases exponentially. Ultimately that means that having a long password or passphrase can make you far more secure than having a short one with some symbols or numbers in it.
My 1password Account
Your free guide to protect your business from being hacked