|
|
|
|
|
|
by infinitelurker
1273 days ago
|
|
|
Am I the only one who thinks it's crazy to put all of your passwords on a companies cloud where every single one of their other customers password vaults also lives? Aside from putting the burden for file management of the vault on the customer, help me understand how local storage (with backups) isn't the safest place to keep my passwords from being compromised. |
|
|
There’s a lot of confidential data stored on S3. This data is intermingled with other confidential data from lots of other companies at the storage layer. But encryption and proper access controls mitigate the risks you’ve described.
As with anything it’s a judgement call. I trust AWS to implement this correctly, and they send out all the correct signals to back this up. 1Password does as well. However lastpass never has, and so it would be a poor call to use their cloud service.