CNN recommends 1Password as a password manager!

The topic of securing one’s email and other accounts is becoming more important than ever, so CNN is offering some advice to viewers on how best to protect their sensitive information. They even called in some assistance from Clay Johnson, CEO of the Department of Better Technology, who recommended 1Password to get the job done!

They’re all stored with you. You just remember one password to get access to all of your other passwords, and they automatically fill out all the forms for you. That’s what I use, and it makes life super easy.

1Password for Mac, iPhone, iPad, Windows, and Android—making life super easy since 2006.

On Ars Technica’s most excellent comprehensive review of password security

Dan Goodin at Ars Technica published an excellent article reviewing password security and explaining why people need randomly generated and unique passwords for every site and service. That is a message you hear from us frequently.

One thing that is clear from Goodin’s review is that many of the underlying issues are more complicated than most people might think. There is a lot of stuff to learn and study to really get a handle on things. Some are technical (salts, hashing, rainbow tables) and others are human (people are actually terrible at constructing “random” passwords no matter how clever they think their scheme is).

I love studying this stuff, and I also love explaining these things to people. Indeed, I suffer from a pathological compulsion to explain things (though my family says that it is they who suffer from my compulsion). But we here at AgileBits also know that most sane people don’t want to have to learn all of the behind-the-scenes details just to be able to log on to websites securely, so we take a mixed approach. We design 1Password so that doing the easy thing is also doing the secure thing.

We also work to provide the behind-the-scenes details here on the blog for those who are interested. We love this stuff. It’s cool, and we like to share it. So the remainder of this post is an annotated list of some of our articles that cover the various topics that Dan wrote about. Often we go into more detail, or talk about things from a 1Password perspective.

Friends don’t let friends reuse passwords
Reusing the same password on multiple sites is probably more of a danger than actually having a less than perfectly strong password for the site. Indeed, I don’t think a week goes by when we don’t talk about password reuse. The particular article I single out here illustrates that real harm to real people can happen with password reuse. And of course it links to tips about how you can best use 1Password to have unique passwords for each site.
Toward better master passwords
Sure you are now using 1Password’s Strong Password Generator when you sign up for a new service or change a password on your site. After all, the only strong password is one that is randomly generated. But what do you do about setting your 1Password Master Password? You need to remember it, but it also should be strong (and thus randomly generated). This article helps you create a strong random password that will withstand the most sophisticated attacks even if your 1Password data falls into the wrong hands.
1Password is ready for John the Ripper
Dan Goodin’s article talked about password cracking tools, computer programs that guess enormous numbers of passwords. We look at how your 1Password Master Password would hold up against John the Ripper (it holds up very well, but you do need a good Master Password).
Tips, tips, and more tips
Once you get the hang of 1Password, there are a number of neat tricks and shortcuts that you can use to make life even more convenient. There are 1Click Bookmarks that can be used in almost any Mac app, some tips just for 1Password for Windows, some shortcuts for getting the most out of 1Password on iOS, quick ways to add software licenses on the Mac, and more. There are a lot of time saving tips in there, but learning multiple shortcuts at one time can be overwhelming. So come back to these, one by one, when you are ready.
Peanut Butter Keeps Dogs Friendly, too and A salt-free diet is bad for your security
Passwords, whether we are talking about your 1Password Master Password or a password on a website, need to be handled very carefully by systems. What the system stores should work to make it very very hard for someone who gets a hold of the data to be able to make use it. The first article describes PBKDF2, the password based key derivation function used by 1Password and other high security tools. The second article discusses how websites may or may not be doing a good job with when they manage your passwords.
Convenience is Security
When security tools go against the grain of how people work, the result is often poor security and unpleasantness. We bring top-notch security to people by paying attention to how people work. Our design goal has always been to make it easier for people to behave securely than to behave insecurely.

1Password 3 for Mac wins Macworld Eddy!

Eddy Award 386pxYesterday, the Twitterverse reported some amazing news to us: we won a Macworld Editor’s Choice Award for 1Password 3 for Mac!

To say that we’re blown away is a mighty understatement. I mean, sure, we think 1Password is the bee’s knees, but I reckon we’re just a tad biased. =)

2010 has been an amazing year for us, one in which we’ve been able to make a lot of our customers very happy by offering loads of new goodies or improvements to existing ones. We’re going to do a “year in review”-type thing later on, but suffice it to say that the blessings have been heaped on us this year. Just a few days ago, @1Password‘s day was made when we saw this:

You have to understand that this was very much a collaborative effort, and I thank all of you who delivered the virtual smackdown so Jim would give 1Password a try. Twitter family, we ♥ you. We don’t wait for Thanksgiving to be grateful, but this year the day was especially meaningful. We hope that you enjoyed our Thanksgiving promotion and gifts as much as we did!

Then, yesterday, this amazing recognition by Macworld of all our hard work… I’m tearing up over here, people. This isn’t just icing on the cake. This is like a bakery opening up next door so you awaken to the smell of warm bread and fresh pastries every morning.

We share this honour with our amazing friends over at Smile, who took home an Eddy for the terrific TextExpander 3. Congratulations, friends, we’re all smiles today!

Naturally, none of this would have been possible without you. Yes, you. No, no, don’t look over your shoulder, I mean you. Yes, you too. And you (and you, and you…). For every computer or mobile device on which you install 1Password, for every 1Password license you give as a gift, for every person you tell about our software, for every blog or forum comment, for every review you post wherever you post it, and for every little tweet you tweet, thank you, from the bottom of our hearts.

1Password in iLounge’s 100 Essential iOS Apps of 2010!

We just got word that 1Password for iPhone and iPod touch made it into the 2011 iPod/iPhone/iPad Buyer’s Guide as one of the 100 essential apps of 2010. In fact, we’re first on the list in the productivity section! You can check out the guide at iLounge and see what other treasures are on the list.

We work hard to make 1Password—and everything we offer—the best it can be, and our users’ feedback makes it all worthwhile. Keep letting us know what you think (and what we can improve) and we’ll keep churning out new features. Thanks to iLounge for making our day!

1Password sparkles as a Macworld Gem

Image courtesy of Macworld

Macworld senior editor Dan Frakes was tasked with selecting a list of 10 must-install OS X applications. Anyone who’s been using a Mac for even a little while knows that this is no easy task, given the amount of amazing OS X software out there. Have a look at the article and you’ll see that Dan sneaked a couple of extra applications in there, so you’ll find an additional Gem or two to try out on your Mac.

We’re proud to say that when he was backed into a corner and had to pick nothing less than the best of the best, Dan included 1Password for Mac on this prestigious list of essential OS X applications:

This combination of a standalone program and a seamlessly integrated browser add-on lets you store passwords and other personal info in a secure database that’s accessible across all your browsers (and syncs with companion iPhone and iPad apps).

Hearty congratulations to our buddies @dropbox and @SmileSoftware, and all the other fantastic developers whose software made the cut. We are honoured to be in your company. Thank you to Dan, Macworld, and especially all our wonderful customers, blog readers, forum members, and Facebook/Twitter followers for making 1Password what it is today.

1Password Guest on Jimmy Kimmel Live!

So there I was, going through my daily routine, responding to folks on Twitter, when I came across this tweet:

Hang on, what? 1Password on Jimmy Kimmel Live? I don’t really know anything about the show, so I asked @sleuth for more information. Jason sent me a link to the episode on ABC’s web site and told me to watch the 16-minute mark:

Imagine my delight when I saw 1Password’s icon in the Jimmy Kimmel web browser!

Now, I don’t know if you know this or not, but it wasn’t all that long ago that we caught a glimpse of 1Password’s unlock screen on TNT’s “Leverage.” We’re on our way, friends, and we wouldn’t be, if it weren’t for you!

[Begin dream sequence…]

Original photo by Christian Haugen

[…End dream sequence]