Slashdot Mirror

← Back to Stories (view on slashdot.org)

LastPass Makes Password Management Free Across All Of Your PCs, Tablets and Smartphones (cnet.com)

Posted by msmash on from the free-stuff dept.

LastPass on Wednesday announced that its popular password manager will now be free for all to use. LastPass previously charged a fee of $12 per year to sync passwords across multiple devices, such as a computer, tablet or phone. From a report on CNET: To entice newcomers, the service allowed you to access select features for free on either the web or on a mobile device, but syncing between the two required a premium membership. Not anymore -- that service is now free. LastPass is one of the best known and most trusted password managers. Its main purpose is to store all of your passwords in an encrypted vault in the cloud. The vault can only be opened using a master password that only you know. LastPass doesn't store the master password or have access to it, which means even if its servers were to be breached, your precious passwords would remain encrypted and protected.

3 of 234 comments (clear)

  1. Re:A Master Password.... by suutar · · Score: 5, Informative

    from How It Works:
    Local-Only Encryption
    User data is encrypted and decrypted at the device level. Data stored in the vault is kept secret, even from LastPass.

    Now, you don't have to believe that if you don't want to, but unless you have evidence I'm gonna say you appear to be mistaken in your understanding of how it works.

  2. Re:A Master Password.... by Anubis+IV · · Score: 5, Informative

    I don't use LastPass, but they make it abundantly clear that all encryption and decryption is local-only, done on-device, not in the cloud, so that they never have access to the information in your vault. From what I can gather, their cloud is little more than a sync engine between devices, rather than the place from which you access your data.

  3. Re: WHo cares how it works. by dnorman · · Score: 5, Informative

    each site has a unique, computer-generated password. which is stored in encrypted form and only decrypted by you when you need to retrieve that single password. if one of the 20 sites doesn't store their password properly in their database, only that password will be compromised and the other 19 are safe. This is much better than using a single super-secure-nobody-could-possibly-guess-it password for all sites.

    --


    It is pitch dark. You are likely to be eaten by a grue.