Add your comments
DLS Archives
May 2013
| Sun | Mon | Tue | Wed | Thu | Fri | Sat |
|---|---|---|---|---|---|---|
| 1 | 2 | 3 | 4 | |||
| 5 | 6 | 7 | 8 | 9 | 10 | 11 |
| 12 | 13 | 14 | 15 | 16 | 17 | 18 |
| 19 | 20 | 21 | 22 | 23 | 24 | 25 |
| 26 | 27 | 28 | 29 | 30 | 31 | |
Essential Windows Apps | Do Not Track | Microsoft Office | SayNow | LibreOffice | Zeam Android Launcher | Dead Space iPhone | Firefox 4 Mobile | Firefox 4 Release | PlayStation iPhone App | Excel Tips | Android Launcher | Google One Pass | Dead Space | Google Cloud Print | Songbird for Android | NBA Jam | Internet Explorer 9 | Windows 7 Connector for Mac | Office Mac 2011 | IE9 RC
Reader Comments (Page 1 of 1)
(Unverified)Aug 23rd 2008 5:58AM
Just one simple thing. Encrypted or not, I would NEVER store all my passwords on some faraway server up high in the clouds. What if that server goes down? Or what if some Chinese hacker is attracted by this passwords-honeypot and manages to crack even a small part of it? To me, this is like saving your money in a cookie jar on a public park bench. No, thanks!
(Unverified)Aug 23rd 2008 7:59AM
Henk -
LastPass has 2 data centers right now and your passwords are stored locally in a cache, so if we're down, you still have access to your passwords, can still export them, can still use them to login to your sites.
LastPass is an exceptionally poor target for hackers because we only have 256 bit AES encrypted data and unlike many companies, we hardly know anything about you.
We use AES-256 bit encryption, which is frankly extreme overkill for protecting your passwords, but we wanted to do everything in our power to make it safe: to quote NIST: http://www.nist.gov/public_affairs/releases/aesq&a.htm
"Assuming that one could build a machine that could recover a DES key in a second (i.e., try 2^55 keys per second), then it would take that machine approximately 149 thousand-billion (149 trillion) years to crack a 128-bit AES key. To put that into perspective, the universe is believed to be less than 20 billion years old. "
This is like storing your passwords in a vault in Fort Knox, and is significantly stronger than leaving them unencrypted on your PC.