Bank forbids password managers

jaybeeaitch

Firstly, I would like to say that 1password has massively increased my online security. I have different, complex passwords for all the sites I use. Great product. But, idly reading the morning paper, I came across a comment that many UK banks forbid the use of password managers. So I immediately checked my own bank, Santander, and their terms and conditions specifically forbid using a computer or software to store any security details other than user id. I was astonished. And this instruction comes from a bank that is happy to ask for three characters from a supposed secret password (thanks svondutch for explaining why that means they encrypt rather than hash)

Has anyone else come across this? Is there any bank out there that has a sensible security policy?

John

Ben

Hi @jaybeeaitch,

You may find this recent post on our blog interesting:

https://blog.agilebits.com/2015/03/23/an-open-letter-to-banks/

thanks svondutch for explaining why that means they encrypt rather than hash

I think you mean the opposite. :)

Unfortunately I'm not at all familiar with UK banks, but hopefully one of our customers in the UK can chime in with something useful there.

Thanks!

Ben

jaybeeaitch

Thanks bwoodruff, that was an interesting link, I'm obviously not alone!

Ben

You're very welcome! :)