- #Google chrome saved passwords vs lastpass install#
- #Google chrome saved passwords vs lastpass software#
- #Google chrome saved passwords vs lastpass password#
- #Google chrome saved passwords vs lastpass plus#
While I have no special knowledge of the internals of these two options, the implications appear pretty straight-forward. You can either use your Google Account (the default), or you can set a special "sync passphrase". In addition to any unintentional iCloud syncing as mentioned above, Chrome will also sync your passwords between Chrome instances. But bear in mind that Microsoft has a history of chasing Apple, and may decide to do so here as well. Your passwords are on your computer, and there they stay until further notice. The Windows Exciting Names And Data Protection API Professional Edition boasts no such features. For example, if you ever sync your passwords on an OSX device, those passwords go into the Keychain (as mentioned) which has been re-branded the iCloud Keychain - the implications of which are exactly what they sound like: now Apple knows your saved passwords too, and will sync them to your iPhone, your iPad and any other Apple devices. If you're on Windows, it's the Windows Data Protection API (Microsoft has a peculiar skill for naming products), if you're on KDE, it's the Wallet, in GNOME it's Gnome Keyring.Įach of these products has its own implications that are worth noting. So for example, if you're on OSX, that's the system's Keychain.
#Google chrome saved passwords vs lastpass password#
When passwords are saved locally on your computer, Google will attempt to use whatever local password vault might exist.
#Google chrome saved passwords vs lastpass plus#
But there's are different aspects to this depending on the setting, plus a few details that you should keep in mind. NOTE This answer may be outdated due to improvements in Chrome since this answer was written.įirst of all, Chrome does encrypt your passwords and other secret data. I'm asking about intelligent malicious hackers.
PS: I don't care about friends, family or novices gaining access to my account. Is that true?Īlso, from a practical perspective, is one or the other more likely to be hacked in real life? Are there certain attack vectors which are more common or more successful that would work one one of these or not the other?
#Google chrome saved passwords vs lastpass software#
With those givens, all other things being equal, is LastPass any safer than Chrome? It seems like once malicious software gets on my system, or a bad guy has access, it doesn't matter from a theoretical perspective, I'm 100% compromised.
#Google chrome saved passwords vs lastpass install#
Or install OS user account level monitoring software. Install malicious extension to intercept all your browsing activity, Said bad guy can dump all your session cookies, grab your history, Within the OS user account just aren't reliable, and are mostly justĬonsider the case of someone malicious getting access to your account. Beyond that, however, we've found that boundaries So, Chrome uses whateverĮncrypted storage the system provides to keep your passwords safe forĪ locked account. Your password storage is the OS user account. I'm the Chrome browser security tech lead, so it might help if IĮxplain our reasoning here. Justin Schuh defended Google's reasoning in the wake of this post detailing the " discovery" (sic) that passwords saved in the Chrome password manager can be viewed in plaintext.
0 kommentar(er)
