Dropbox syncing security

dy_atx
dy_atx
Community Member
in Mac

Hi 1Password team -- this question is related to the Closed thread --> https://discussions.agilebits.com/discussion/26967/how-safe-is-my-data-when-i-sync-via-dropbox

In that thread from 2014, Rob indicates that the .agilekeychain format leaves some data unencrypted and as such, may be viewable without the master password if your Dropbox or other account were compromised. My specific concern relates to another issue I have had for years with 1Password, which is that there is only one secure 'password' field and not more options to store security questions/answers, second passwords, etc, that many sites/applications require.

Can you please confirm whether this data format security issue has been corrected and encryption now applies to the entire vault contents?

Thanks!

1Password Version: 6.0.1
Extension Version: Not Provided
OS Version: Mac OS 10.11.2
Sync Type: All

Comments

  • Drew_AG
    Drew_AG
    1Password Alumni
    edited January 2016

    Hi @dy_atx,

    Thanks for taking the time to ask us about that! I'm glad you're thinking strongly about the security of your data. I first wanted to assure you that your passwords are safe when using the Agile Keychain sync format with Dropbox sync. The metadata that Rob explained is unencrypted in the Agile Keychain format is the titles and URLs of your items - in other words, the same kind of information that would be found in browser bookmarks. The rest of the data in your items (such as security questions/answers, second passwords, and so on) is encrypted. Please make sure you read this forum post from a few months ago, which will explain more: Your passwords are safe when using the Agile Keychain format

    If you're interested in more information about the Agile Keychain format, you can find it here: Agile Keychain Design

    We do have a newer sync format called OPVault, which encrypts item titles and URLs. If you're currently using the Agile Keychain format in Dropbox and would like to switch to OPVault, you can follow the steps here: Switching to OPVault from Agile Keychain

    If you'd like to read more about the OPVault format, please check out this knowledgebase article: OPVault Overview

    You also mentioned wanting to set certain custom fields as password fields so they can be concealed when viewed in 1Password. You can do that by following the steps here: Set field type

    Hopefully this helps, but if you have more questions about that or need anything else, just let us know! :)

This discussion has been closed.