Feature in LastPass in the event of death

JBEAN74
JBEAN74
Community Member

I read this article recently about LastPass. I was wondering if 1password is either working on something similar or already has this feature.

"A recent update to LastPass, for example, introduced an Emergency Access feature. This allows you to designate one or more trusted family members to be able to access your password vault in an emergency. The way this works is that you enter their email address and a waiting period. They can at any time request access, and you will be emailed to let you know they’ve done so. If you’re still around, and don’t want them to have access, you can decline the request. Once the waiting period expires – as it will when you are no longer here – they are given access."


1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided

Comments

  • hawkmoth
    hawkmoth
    Community Member
    edited March 2016

    @JBEAN74 - AgileBits recently released a new product, 1Password for Families, which has the capability you are interested in. You can read about it in the blog post announcing its release, at this link. And, 1Password for Teams is in beta now, and although it is more aimed at businesses, it also has the ability to have someone else have access in an emergency. See if one of those meets your interest.

  • JBEAN74
    JBEAN74
    Community Member

    So I have to sign up and pay $5/month for this one very important feature?

    Will it ever be included in the base product?

  • hawkmoth
    hawkmoth
    Community Member
    edited March 2016

    Will it ever be included in the base product?

    I'm not an AgileBits employee, so I can't say what might come to the standalone versions. Someone from AgileBits will be along to comment soon. But since no one can help anyone who forgets their master password, I suspect that won't be easy to do. Remember that LastPass data is stored on their servers, and the standalone version of 1Password doesn't do that.

  • This content has been removed.
  • JBEAN74
    JBEAN74
    Community Member

    Thanks for the suggestion but you have to purchase their premium version.

  • This content has been removed.
  • prime
    prime
    Community Member

    My wife has my master password in her 1Password vault, and I have hers. Seems easy to me.

  • This content has been removed.
  • prime
    prime
    Community Member

    @Tangible
    They have a form to fill out for this too. In all, I can give my master password to my daughter or someone else I trust in my family. My mom, daughter, in laws, and sister all use 1Password, I can give them my master password also. I don't think this is a big deal at all or a "selling point" IMO.

  • dszp
    dszp
    Community Member

    It's impossible to implement a time-delay password for encrypted data when the user has the encrypted data (with 1Password the encrypted file is stored on your computer). LastPass is simply encrypting the data with a secondary password (this is possible mathematically, though makes things more complex and open to bugs) on their servers and then disallowing the other person to see the data on their server until some time has passed. Because your 1Password vault is on your computer, anyone who can get to your computer can use any password that works to unlock the vault at any time, so you might as well share your master password with those who need access.

    Just like anyone with a key to your front door doesn't have to wait to use the key if they can get to your front door, but if someone has a key to a safety deposit box at the bank, they would have to be authorized by the bank to get to the box before using their key, and the bank can require other verification. However, if thieves break into the bank and steal the safety deposit box (equivalent to someone breaking into the LastPass servers), they can then have unlimited time to try to find the right key (though in practice, a good master password will be harder to find than a physical lock key so you will theoretically be safe either way).

    This is also the reason that Time-based One Time Passwords (TOTP) using the Google Authenticator algorithm are useless with 1Password; it would be like someone standing in front of your front door nicely asking someone to recite a special password before using your key--push the person out of the way and try your key anyway, the door's right there. This works better in a bank as above, the bank has stronger mechanisms to prevent just anyone from trying to access your safety deposit box than just the key, but if those are bypassed your (encrypted) data is now accessible to others through no fault of your own. If the encryption holds and there is no code modification that inserts a back door you're still likely fine, but it's the bank security that equals TOTP or a time delay, not encryption.

  • This content has been removed.
  • This is a great discussion, and I think there are points work considering all around. I have just been having a discussion in another thread about this very matter, and some of the points made there may be of interest to you folks as well:

    Preparing for the inevitable: a specific vault for executors/successor trustees - AgileBits Support Forum

    Ben

This discussion has been closed.