Update October 2019 – Switching to 1Password Subscription
I’ve since switched to the subscription version of 1Password as it is more convenient to make sure everything works well in sync and eliminates the need for Dropbox. It is also much easier to make sure everyone in my family and business has an updated version of 1Password.
It’s important to note that local backups of vaults can still be made even if you’re using the subscription version. If you back up your computer with Time Machine or Backblaze, you’d automatically have a backup of your vaults. With a subscription you still have a local copy of all your data on your device itself. The subscription gives you a backup with 1Password (the company) as well as a way of syncing your data. If something happened to their servers you’d still have a backup of your data on every device where you use 1Password. If you have that device backed up with Time Machine, Backblaze, etc, your data is backed up in triplicate at least (a copy on the 1P server, a copy on every device, copy in your Time Machine).
One thing that should be of concern is where the data is kept and how it’s being secured. It’s completely rational and prudent to be concerned about where you keep your data and with whom you trust to keep it safe. With either option of using Dropbox or 1Password account, your data is hosted in the cloud. In both cases, it’s stored fully encrypted and decrypted locally on your devices when you access your data. By using Dropbox, you are entrusting 1Password to encrypt your data, and entrusting Dropbox to keep it secure. If you migrate to a 1Password account, you remove Dropbox from the equation. This has the effect of of simplifying things considerably, but it still keeps your data secure.
1Password accounts add some extra layers in addition to your Master Password in order to protect your data, which replaces the security that you are currently relying on Dropbox for. The first is the Secret Key, which is generated locally on your device, not known to us or anyone else, never transmitted over the internet, and combined with your Master Password to unlock the encryption keys that protect your data. The second is Secure Remote Password, a zero-knowledge protocol that adds an additional layer of encryption in transit, and authenticates you with the 1Password servers without using your Master Password or Secret Key in order to sync your data to all your devices. So your Master Password protects your data on your device as it always has, your Secret Key protects your data in the cloud, and Secure Remote Password protects your data in transit.
In terms of control over your data, you will always have that with a 1Password account. The data that you have in Dropbox right now will stay as is until you decide to remove it, so you can certainly just pick up right from where you left off, if you choose. Even better though, if you decided to go back to the standalone license model or move to another provider, the data in your 1Password account remains accessible even after you end your subscription, so you can keep anything that you changed in the meantime.
Having logins to more than 500 websites and having to remember them all is no joke, you’d need some superhuman abilities for that. It’s one of those areas where I had to call on some software to help me out.
I started off using LastPass, and it served me well for a number of years. I was using it mostly as an individual on one laptop, but as my business grew I felt the need to share some of the logins with others. Obviously I don’t want to share all my logins so I needed software that allows easy organisation and sharing. Unfortunately LastPass, while having these features, has a really terrible UI. It has no native app for Mac OS, so I was stuck in their browser app which was painfully slow. I wasn’t going to be able to organize those 500+ logins anytime soon with LastPass.
Enter 1Password, an app with a really sleek UI that works perfectly for me. It stores its password vault locally on your laptop and if you need to use it from more than one device you can sync via Dropbox, which is ideal for me as I’m already a heavy Dropbox user. Now I can easily access my login data from my Macbook Air as well as the iPad. My wife can also access some of my logins through a shared vault. You can create many vaults in fact, and share only those you want. Within each vault, you can further categorize and tag logins, which gives me the right amount of organizational functionality that I need.
One great advantage of 1Password is two-factor authentication. Security-wise, the most important thing is to set a very secure Master password, as that is your weakest point when using 1Password. The password vault is stored on your Mac with 256-bit AES encryption, a standard used by financial institutions. Thus even if a thief steals your laptop or maybe your iOS device, unless the device still has 1Password in logged-in mode, they cannot access your passwords, since the vault is encrypted.
