[cryptography] LastPass have been hacked, so it seems.

Harald Hanche-Olsen hanche at math.ntnu.no
Tue Jun 16 16:47:05 EDT 2015


John R. Levine wrote:
> Are there any password managers that let the user specify where to
> store a remote copy of the passwords (FTP server, scp, Dropbox,
> whatever) while keeping the crypto and the master password on the end
> devices?

Nobody has mentioned STRIP yet, but it fits the bill:

https://www.zetetic.net/strip/

This and other password managers are analyzed in the 2014 USENIX paper 
“The Emperor’s New Password Manager: Security Analysis of Web-based 
Password Managers” by Zhiwei Li, Warren He, Devdatta Akhawe, and Dawn Song.

https://www.usenix.org/conference/usenixsecurity14/technical-sessions/presentation/li_zhiwei

– Harald


More information about the cryptography mailing list