Lost 1Password 6 to 7 user
I've been a user of 1Password for almost 10 years now. I started with 1Password 4 (I think), and I was using 1Password 6 until some hours ago.
I recently bought a new Mac Mini M1, and while installing apps I tried to download 1Password 6 to discover that 1Password 7 is a whole different thing. (I didn't check for updates too often, no).
I never liked subscription based services, specially web-based ones, so I considered downloading 1Password 6 (I found it on your website). Since 1Password has always been such a great service for me though, I decided to give 1Password 7 a try, but after reading about it and creating and account and so on, I have some questions/doubts:
I used to have my keychain (.agilekeychain file) in Dropbox, which if I'm correct was encrypted locally using AES256, and then synced with Dropbox itself. Now it seems that the passwords are stored in your servers, and although they are also encrypted, I feel this is less secure than having the keychain locally... I assume I'm wrong here, but I can't help but feel that way. What am I missing? Specially since you can access your whole keychain on the website itself...
What happens if some hackers access your database? Because if I understood correctly, if Dropbox data was compromised you were still OK since the file in there was completely AES256 encrypted. Is the same case with you guys?
If I choose to go the my.1password route, I assume I will be ditching Dropbox as a syncing method, right?
The Emergency Kit... I gues that it is supposed to be kept in actual paper somewhere safe, am I right? Just in case I forget my Master Password? I used to keep all my recovery codes for website logins inside 1Password... it's gonna be tough for me to trust a piece of paper, specially since anyone could get all my passwords if they get it.
The Secret Key confuses me. What is it for? I assume it's just another security layer, like 2FA on your cell phone, but still... why the need?
I have a lot more questions that kind of where answered reading blog posts and such, but my main concern is security wise.
1Password Version: 7.8.2
Extension Version: Not Provided
OS Version: macOS Big Sur
Sync Type: ???