The LastPass security breach controversy continues. A backlash came from rival password management company 1Password after an independent security analyst said LastPass’s statements were unrealistic, outright lies.LastPass passwords are easy to crack!
LastPass claims it will take millions of years to crack users’ master passwords, but 1Password says this isn’t true for most users. He says it would only cost $100 to crack a typical LastPass user’s master password.
Machine-generated passwords are more secure
Jeffrey Goldberg, 1Password’s main security architect, thinks it’s safer to use machine-generated passwords. Goldberg said, “If you consider all possible 12-character passwords, there are about 272 possibilities. It would take millions of years to try them all, indeed a very long time. But those who crack human-created passwords don’t do it that way; First, they set up their systems to try the most probable passwords. Most user-generated passwords can be cracked with less than 10 billion guesses in a process costing around $100.” says.
1Password claims to be more secure
1Password uses an additional layer of protection called the Secret Key. The secret key is generated on the user’s device, does not go to 1Password, and the user data needs to be decrypted. Even if the master password is compromised, it’s useless without the secret key.
16067
