Comment on 1Password discloses security incident linked to Okta breach
GigglyBobble@kbin.social 11 months agoI hope they don't have your master password either. The decryption key sounds like just a longer password or salt with extra steps. What if the generation algo is cracked?
qqq@lemmy.world 11 months ago
They don’t have your password in any form. The random key is generated with a CSPRNG, we don’t know how to crack that. They aren’t hiding behind secrets it’s all documented right here 1passwordstatic.com/…/1password-white-paper.pdf
1Password is quite good.
dangblingus@lemmy.world 11 months ago
Not good enough clearly.
KairuByte@lemmy.dbzer0.com 11 months ago
You clearly don’t understand what happened, nor what it would take to get into a users password store.
PoliticalAgitator@lemm.ee 11 months ago
Not as clearly as you seem to think. You’ll struggle to find qualified people with criticism of their response.