I think this is the first time I have seen a password manager taking such steps to improve data isolation.
IMO, while the blog post frames the "remote access" feature as a way to improve compatibility with more OSes, the most interesting side effect is that it significantly improves security!
One of the most common criticisms towards password managers is that "All of your eggs are in one basket. If your system is compromised, it is game over". With this thing, you can now have just one, arguably pretty hardened, basket. Instead of having multiple fragile baskets. E.g., if your desktop PC is compromised, an attacker cannot simply read out all secrets from RAM. Reading secret data must now be authorized on a different device, on a case by case basis.
Kudos, Paulo. This is a really cool and original idea.
(Full disclosure: I am a friend of Paulo's, so I'm obviously biased; nonetheless, I truly feel he has built a great product).
Is there anyway to share passwords? My wife and I share passwords and currently use LastPass for that so it is def a requirement. Would love to use something like this for my kid to control what he can and can’t log into.
That might not be the right use case but something I thought about looking at Secrets.
Hello, sorry for the delay.
You just need the iOS version to use this feature. The browser extensions are free.
Sharing items is not possible yet but something we definitely want to add in the future!
This is the first I've heard of Secrets. Seems like a cool product! I've been relying on FF to save my web logins, but annoyingly iOS opens up links in Safari and I have to re-open them in FF to get the auto-fill to work.
Any future plans to support sync with FF logins/pw?
Not sure I understand what you're asking. I don't think FF has an API where I would be able to sync would it. But if you can export your logins to a CSV you can import them with Secrets for Mac (importing is not yet possible on Secrets for iOS).
If you do want to use Firefox on iOS (irrespective of having your logins there or not), Secrets is also able to fill in FF using iOS's Password AutoFill feature.
Finally, and as side note, on iOS 14 you should be able to set Firefox as your default browser on iOS.
>If you do want to use Firefox on iOS (irrespective of having your logins there or not), Secrets is also able to fill in FF using iOS's Password AutoFill feature.
Nice! I love what you did with the security.
Do you have any plans on supporting Android as well? I would love to have this on my phone, but i'm an Android user.
If this was on Android, i would gladly pay for it.
Happy to know you liked it ;) I don’t have plans for Android just yet. Secrets makes use of many of Apple’s frameworks so porting it is not an easy task. I’ll count your +1, though.
IMO, while the blog post frames the "remote access" feature as a way to improve compatibility with more OSes, the most interesting side effect is that it significantly improves security!
One of the most common criticisms towards password managers is that "All of your eggs are in one basket. If your system is compromised, it is game over". With this thing, you can now have just one, arguably pretty hardened, basket. Instead of having multiple fragile baskets. E.g., if your desktop PC is compromised, an attacker cannot simply read out all secrets from RAM. Reading secret data must now be authorized on a different device, on a case by case basis.
Kudos, Paulo. This is a really cool and original idea.
(Full disclosure: I am a friend of Paulo's, so I'm obviously biased; nonetheless, I truly feel he has built a great product).