Curious about additional security measures

Options
brandonlamb25
brandonlamb25
Community Member
in Mac

I use the latest version of 1Password on Mac and was wondering about encrypting my backup or the data that is stored within 1Password. I found the backups folder on my Mac. Its in the default location. i didn't change its location. Im just wondering if I could encrypt the backup folder and if so would that cause me and problems. I do sync my data with iCloud so it can be current with the iOS application running on my iPad and iPhone. I also work for Apple and thought about putting it on my work iMac but wasn't sure yet. Thanks for any information you can pass along.

Comments

  • littlebobbytables
    littlebobbytables
    1Password Alumni
    Options

    If you're talking specifically about 1Password's backup then I'm not sure I understand why you'd want to encrypt it. While the backups are zip files what is contained is the encrypted sqlite file and a changes file (I'm assuming encrypted too). While I am no security guru, one of the tidbits I've learnt over the years from both here and reading Schneier's blog is that double encryption does not make you doubly safe, in fact there are supposedly many times it makes you more insecure (unintuitive to most people - except the gurus ;-)).

  • Megan
    Megan
    1Password Alumni
    Options

    Hi @brandonlamb25‌

    I am so glad you are thinking strongly about the security of your data - thats what we like to see!

    Please note that both your data file and your backups are encrypted with an exceedingly secure encryption algorithm called AES. Even if someone were to acquire a copy of your 1Password data file, it would be extremely difficult (approaching impossible in a human lifetime) for them to actually gain access to your passwords without your Master Password. To learn more about cloud data security, have a read through the following article.

    http://help.agilebits.com/1Password3/cloud_storage_security.html

    And you can see the thoughts behind our data format's design here.

    http://learn2.agilebits.com/1Password4/Security/keychain-design.html

    Also, you can check out our blog for many more articles that go into the nitty gritty math behind what makes 1Password so secure.

    http://blog.agilebits.com/tag/cryptography_/

    I hope this helps, but we're here if you have any further questions or concerns!

This discussion has been closed.