Can there be a breach of security while the database is locally decrypted?

olyroad
olyroad
Community Member
in Mac

Hello,

I am a Mac user and recently became a 1Password user too.

I would like to ask whether there could be a breach of security while the database is decrypted on my computer. Is there a possibility that a Trojan steals the database with all the secret information?

I heard that Mac's are not vulnerable to Trojans, viruses, warms etc. But I am I asking because I would like to be on the safe side.

Thanks,

Comments

  • Stephen_C
    Stephen_C
    Community Member

    There are many copies of AgileBits blogs posts here in the knowledge base which will probably tell you more than you ever want to know about the security of 1P. :) Probably the best place to start, in the context of your specific question, is with this article "Is 1Password more secure than an AES encrypted text file?". You'll note in that, particular, the comment:

    1Password, in contrast, decrypts only a single item at a time as it is needed.

    Have a look at the article and if you still have questions please post again.

    Stephen

  • hawkmoth
    hawkmoth
    Community Member

    It isn't quite true that Macs are not affected by malware. It hasn't been as common as with some other operating systens, but malware does exist for OS X. Reasonable care on what links you click and what files you download is in order on a Mac too.

  • littlebobbytables
    littlebobbytables
    1Password Alumni

    @olyroad‌

    While we do our best to protect the users, if your machine is compromised enough that reading of memory contents is possible then it's pretty much a case of all bets are off. Even if we're only decrypting as we need to if your machine is that compromised then all it takes is time and patience.

    Like hawkmoth I wouldn't go as far as saying Macs aren't vulnerable. You can do your best to make them difficult to break but any time you ever hear somebody claim something is unbreakable you're listening to a liar. Maybe a bit harsh but I stand by that. When it comes to security and encryption there are no absolutes, you simply try to make it as difficult as you can.

    One thing I like to practice is to only run as a user rather than as an administer. It means every Mac has two accounts but I only access the more powerful one when I specifically need to. I've no doubt others have suggestions to add to the mix, undoubtedly even stuff I should add to my practices :smile:

  • olyroad
    olyroad
    Community Member

    Thank you all for your comments.!

  • Megan
    Megan
    1Password Alumni

    Hi @olyroad,

    Thanks for the question - it's great that you are thinking seriously about the security of your data.

    If you have any other questions or concerns, we're happy to help! :)

This discussion has been closed.