Category: 
Yes, we have lots of passwords - bank accounts, e-mails, computers, domains, instant messengers, you name it - and we need them all. We may forget them and we do.
I am not talking about those who have only one password for all, they are just not aware of risks. Regular PC user needs at least 10 passwords. I think that we all agree that we need a Password Manager. The only question is which one to chose.
What to Look for in Password Management Software
Password management software should be easy to use and useful to the most inexperienced computer user. It should also be secure enough to keep hackers out and passwords safe. These are the criteria that one shall consider when selecting a best suitable solution for his money:
• Feature Set – The best password management software provides applications and tools to help manage passwords and login information. This may include saving personal data or credit card information, program functions like web site launching capabilities. Automatic capture and filling of forms shall be of highest priority.
• Ease of Use – Password management programs should be easy to program and manage, even for computer novices.
• Portability – The ability to launch application and to save records to a removable device. Alternatively a web access to the stored passwords can be used
• Security – Most importantly, the software should provide password security to its user. Passwords shall be kept encrypted. User shall have an opportunity to make backups of saved information and generate passwords with encryption algorithms.
From the whole range of password managers only two answer these requirements:
RoboForm2Go – a nice and popular and
n-Pass2Go –
Alternative mode of operation, as I have mentioned already, is to store passwords online and access them from any computer. This novel approach deserves more attention.
First and most interesting IMHO is a Clipperz. Good - smart design, good idea, Ajax. Drawbacks –rather complicated operation. My personal concern is also about keeping all my passwords somewhere online. Even assuming that staff cannot access and decrypt my files, it can be done by hackers with brute force attack. And in case that I forget the master password – all gone.
Then, I would like to mention Passpack. Another nice and fast developing tool. It fills passwords automatically from the Ajax window. The same minor concern – keeping passwords, a most valuable information online. I personally will use it for some accounts not containing information on bank accounts, credit cards and social security.
The last one, myVidoop, was suggested by Kevin Fox in his comment to one of the previous posts. An interesting idea of replacement of master password with image categories was implemented there. Major drawback for me is lack of portability. I mean that you need to install plug-in to enable automatic form filling. This is impossible when you are working on public computer or at work.
The bottom line:
I need portable password manager.
I will NOT keep my passwords online,
only with me, close to my heart.
I will continue using n-Pass2Go
It is portable,
it does NOT need to install anything,
it is user-friendly and feature rich.
There are many password managements sites out there. Another one you should take a look at is http://www.MashedLife.com. This site stores passwords and does more like auto-log in, sharing accounts, iPhone browser, and Facebook application.
The features this site has makes password management very easy. One such feature is the Yubikey support. The Yubikey is USB device that will generate a password string. This secure password is contained on the USB drive. Using that to log onto MashedLife, and even other sites, means security is upheld.
The Facebook application is simple, but useful. Adding to your Facebook means that you will be able to browse other sights by logging into your mashedlife through your Facebook.
So, I urge you to look at MashedLife and use that in your review too. It has a lot of features that some other sites lack.
It would be worthwhile to mention that your myVidoop account can also be used as an OpenID. Beyond helping you to secure your data, we are helping you to truly own it (see DiSo, etc.)
My current password management solution is Firefox portable installed on a thumb drive, along with the plugin and password file. It is a free, easy and completely portable solution you could plug in anywhere. Once you are done just unplug the drive and move on.
If you lose the drive just login to myVidoop from anywhere and deactivate the compromised browser.
To Vadva, Looks interesting, supports MacOS, etc, but… Yubikey can work with websites that integrated its API or with MashedLife, which in turn needs installation of software to the browser.
Speaking about portability I mean absolute freedom. No drivers, no installations, and any webform at any website.
In any case I would like to learn this solution closer to give my final verdict.
To Kevin, I think I will do a complete review of all mentioned online password managers in one of later posts.
i here for any help for you computer DR:
From its description, ClipperZ only stores the encrypted passwords online, while decryption is performed by Javascript on the local computer. This essentially eliminates the risk of their being discovered through hacking, unless the master key is compromised. I doubt that could be done by brute force if one has a strong key. My main concern is that IF my master key were somehow compromised by any means (carelessness, keylogger, my laptop accessed while open …), all my passwords are vulnerable. In contrast, if the master password for an offline device were compromised, there would be no danger as long as the hardware remains in my possession.