2:58PM
More on the 1Passwd - iPhone Sync
I corresponded a little more the 1Passwd folks concerning security of the 1Passwd bookmarklet after it synchronizes to your iPhone. He explained they use 448 Bit blowfish encryption. There is more. Here is an excerpt from Dave Teare's explanation.
"Re: your questions about security and hackability, all your confidential information is encrypted. On your Mac, it is stored in Apple's Keychain, which uses Triple-DES encryption to secure your confidential data. On the iPhone, we did not have access to the keychain, so we used Blowfish to encrypt your data using 448 bits, and we do other cool things like using Cipher-Block-Chaining and randomized Salt to keep your data extra secure. We use OpenSSL to perform the Blowfish algorithm. OpenSSL is open source and is installed on hundreds of millions of machines worldwide."
I've been playing more with the 1Passwd data file on my iPhone and had no problems at all. The developers explain it in more detail at their blog.
Technorati Tags:
1passwd, iphone, MacSparky
Reader Comments (1)
I think 1Password is a great application in term of security matters. Its combination with my web browser on the Mac is really amazing. I faced a problem with Mobile Safari is its entire lack of documentation identification for web forms. This is a main deficit for every web browser or mobile. 1Password have tried to do their best, with an entire lack of support for combination with Mobile Safari from Apple. At the end I think we have a method to keep our passwords on our iPhones.