[DanBC]

You didn't say what platforms you intend to use it on. Nor what your most important attack vectors are.

I use a Yubikey. The first slot is set to a long secure password and is used to gain access to my machine. The second slot is a long secure password which is combined with other text on a per-website basis. I type the text and push the Yubikey button for the rest. This is suboptimal.

[hackthisuk]

Portability is one of my main concerns as I use a variety of platforms e.g. Linux at home, Windows at work and Android on the go. I would also be a little hesitant to trust a hosted solution. SuperGenPass (www.supergenpass.com) seemed like a nice solution but I am concerned about what happens when I need to change password.

Does Yubikey have a solution for Android? They seem right up my street.