Jun 13, 2013

Choosing a Password Manager Is an Important Decision

In the last few weeks, we have seen a number of articles and conversations about password managers. We're excited to see a growing interest in password management because we believe everyone can benefit from improving their online security. Storing your passwords in your browser, a document, or in writing opens you up to a number of threats, and also increases your risk of losing that important data should something happen to your device or physical copies.

We applaud efforts to raise awareness on good password hygiene, and we are passionate about more widespread adoption of password managers. That's why we're committed to making LastPass accessible regardless of the browser, computer operating system, and mobile device that you choose to use. Universal sync and a platform-agnostic approach have been top priorities in the development of our service. Our mission to advance password security has led us to become a best practice in encryption methodology as well as offering a free program accessible for all.

Questions to Consider


Choosing a password manager, or deciding to replace your password manager with a new solution, should be a multi-step process in which you understand what your needs are as a user:
  • What types of devices do I own?
  • What types of devices am I likely to own in the next few years? 
  • Would I want to try a new phone or browser?
  • How much and what type of data do I have?
  • What encryption technology does the service employ?
  • What added security options are available with the service?
  • How accessible is my data in a range of scenarios?
It's also important to understand, even at a high level, what the technical differences are between available solutions.

Advantages of LastPass


We strive to offer a feature-rich product that goes everywhere you need it to, at an accessible price-point, and with encryption technology that stays ahead of the game.

With LastPass, you are not restricted to one browser, one platform, or one mobile device - secure universal sync is built into the free product, with support for Mac, Windows, and Linux, and all major browsers. For $12 per year, you can also have access to your data on any of the 7 mobile platforms we support so far.

LastPass is set apart by offering:
  • Universal sync to all browsers and platforms built into the product
  • Saving and autofilling of your usernames, passwords, and online forms that saves you time logging in and checking out
  • PBKDF2 on top of our AES-256 bit encryption and one-way salted hashes ensure your data is secure
  • Multifactor authentication support - with more choices than any other service
  • Secure sharing of usernames and passwords
  • Notes with attachment capabilities, so you can secure and backup your most important data
  • Free credit monitoring alerts help you better protect your identity
  • Breach alerts tell you when the sites and services you use have been compromised, so you can update your password for those accounts immediately
  • Weak and duplicate password alerts help you generate unique, strong passwords
  • Team-based features with LastPass Enterprise, including a comprehensive administrative console with built-in options to encourage good password practices among employees
Regardless of the tool you choose, the important thing is that you choose one that provides features that help you increase your online security, that allows you to generate strong passwords for your accounts, and that offers the latest encryption technology to secure your data. We hope password managers continue to gain exposure in the media, and we're excited to see more widespread adoption of the technology.

22 comments:

  1. Disadvantage of Last Pass: ugliest on market. Happy LP user! <3

    ReplyDelete
    Replies
    1. Haha seriously. I love LP but its kind of hilarious how each browser add-in has a different UI and they're all kind of hideous.

      Delete
    2. You said that right. LP needs a course in UI design. Their logo probably kept me off going LP for almost a year before I jumped in.

      Delete
    3. totally agreed,the looks need to be improved a lot and much easier to use for rookies

      Delete
    4. LOL That's how you know it's good! It was written by developers, not graphic artists =P

      Delete
    5. Ha - this is the only complaint I have with LastPass. I almost switched to Dashlane because the interface is so much better, but it definitely lacks in certain functionality.

      Delete
    6. @John Graybosch - There's no good reason to not have a UI/UX designer on a development team these days. LP doesn't need fancy graphics, it needs a better looking UI. Their website looks crappy too, to be honest. A great UI/UX can go along way with existing users/customers as well as potential new users/customers.

      Delete
    7. Don't know if it's the ugliest, but it is painful to use on different platforms and this gets in the way of useability. I've had a premium subscription for years and I keep trying it and giving up in frustration.
      The user interface is probably the worst, slowest, and least obvious of any product I try to use.

      Delete
    8. Glad to see it's not just me. I'd shell out a few more bucks per year if they tightened up their Android interface. Not giving this matter their immediate attention is folly.

      Delete
  2. Is "sharing" still just a one-way copy?

    ReplyDelete
    Replies
    1. Not for Enterprise shared folders, or if both parties are premium you can have changes replicated either way. The Enterprise shared folders are far better for most people.

      Delete
  3. I wonder if LastPass have any concerns over the new iCloud Keychain functionality coming in iOS 7?

    ReplyDelete
    Replies
    1. Apple servers,itunes,icloud all of them were hacked few times in the past,i won't trust them with my passwords and moreover after prism i'm never gonna trust icloud keychain with my valuable passwords,who nows they might sell my passwords to the govt. :)

      Delete
    2. iCloud Keychain will, of course, not be cross-platform like LastPass. But for people who don't know any better, I imagine a few will use what comes with their OS. That would fit the pattern -- how many people use IE without even realizing other browsers exist?

      Delete
    3. Lastpass was hacked a couple years ago too, remember.

      The icloud keychain will definitely hurt lastpass, particularly because it's built in to Safari, a feature lastpass cannot match.

      Like you say, though, it's not cross-platform.

      Delete
  4. LastPass can't live without it

    ReplyDelete
  5. This comment has been removed by a blog administrator.

    ReplyDelete
  6. This comment has been removed by a blog administrator.

    ReplyDelete
  7. I cannot see clear data privacy policy, particular, whether Last Pass 1. Require a warrant from an agency to hand them over personal information. 2 tells user about government / law agency’s data requests. 3 publish transparency reports.
    You only say ”Last Pass discloses potentially personally-identifying and personally-identifying information only when required to do so by law”.

    ReplyDelete
  8. "Last Pass discloses potentially personally-identifying and personally-identifying information only when required to do so by law" ...

    I'd like a little elaboration on that, too, yes.

    ReplyDelete
  9. If I had to list one feature which would be personally compelling, I'd have to recommend an alternative storage point for LP user data - like a server owned and secured by the user.

    I'm not entirely comfortable with the idea that all my passwords sit on LP's servers. MAYBE that could be (or become...over time) a premium feature even.

    It's worthy of consideration y'all.

    ReplyDelete
  10. dashlane is not available on my linux machines. I am switching back, I think..

    ReplyDelete