Filed under: iPhone, App Store
First Look: 1Password for iPhone
Managing passwords on the go is about to get easier, now that 1Password for iPhone has hit the App Store [iTunes link]. The release features secure notes, wireless sync to your Mac, and all the credential-caching fun you expect from the full-size tool -- in a handy pantsable format.I was able to install 1Password on my iPod touch and (after a few false starts) synchronize my 600+ desktop entries to the device, but unfortunately now 1Password coughs and dies on the touch when launched. I did manage to get some setup screenshots before things went south, including the desktop-side code entry to pair the device and the computer, so feel free to peruse the gallery -- once we have a bit more time (and I've thinned out my sync list) we'll give the long-awaited utility the full review it deserves.
1Password for iPhone requires 1Password 2.8.1 on the Mac for synchronization. For a limited time, 1Password for iPhone can be downloaded free of charge.
Update: Agile has let it be known that version 1.2 of 1Password has already been sent in to the App Store, so you should be seeing the upgrade as soon as Apple gets it loaded (which may be a little while).
Gallery: 1Password for iPhone
![TUAW [Cafepress]](http://www.blogsmithmedia.com/www.tuaw.com/media/tuaw-cafepress-promo.png)
Reader Comments (Page 1 of 4)
Brian Burns said 3:07PM on 7-29-2008
I waited for this app as opposed to paying for that eWallet app or whatever it was called because I was under the impression 1password would hold credit card info and other wallet entries.
1password for the mac does. Why doesn't the iPhone version hold this information. Lame.
Reply
Rick said 5:28PM on 7-29-2008
Not too sure what you're talking about. All my Wallet items (ie. credit cards, membership numbers, serial numbers, etc) came over just fine.
DistortedLoop said 5:52PM on 7-29-2008
Umm, have you even tried the application. I am looking at it right now, it has icons for Logins, Wallet, Notes, Sync, More. Click on Wallet and all my desktop version Wallet items are right there!
Brian Burns said 3:09PM on 7-29-2008
Oh, ok. Ignore my previous comment.
For some reason the app decided it wasn't going to sync the wallet info the first couple syncs.
It's now there. Phew.
Reply
designr said 4:46PM on 7-29-2008
Using version 1.0, mine came up and synced on the first try. This is light-years ahead of the web-app.
Tanya said 3:13PM on 7-29-2008
Smartest thing they did was offer it free for iPhone (for the limited time of course). I'm pretty cheap, and $35 is nothing to sneeze at. But since it was free i decided to try it out on iPhone. Then i realised what a pain it'd be to input all the info on the iPhone itself, and decided to take the plunge on the desktop app (because all my fav Mac sites keep raving about it). But there's the free trial for 30 days, and what do i really have to lose. I figured i'd try it out, and if nothing else, it's give me the free version on the iPhone without having to input the data directly on the iphone. But now that i've used it, I really like it, and absolutely see myself using it, so i'm gonna pony up the $35. The one obvious downside is that i now have little detterant for online shopping. I don't need to go grab my CC from my purse, it's already in 1Password. Making it all to easy to hit that 'Checkout' button.
I will say the iPhone version is buggy as all getout, which i really frustrating. So i'm hoping the update will be out REALLY soon. In the meantime, even with all it's flaws, it's a gem. Add incredible functionality for all those pesky websites that require passwords, now all i have to do is access them through 1Password, so there's little to stand in my way. Thanks for the eads up TUAW.
Reply
Roustem said 4:17PM on 7-29-2008
Tanya,
We submitted version 1.2 to the App Store the moment the first version was published. I wish we could do that earlier but the program is submitted to the App Store there is no way to make any changes until review is completed.
Best regards, Roustem
Co-author of 1Password
Jeremy said 3:24PM on 7-29-2008
What MacBook give away?
Seems there is something in your notes, dear Michael, that you are neglecting!
Tell us!
Reply
Fritz Laurel said 3:28PM on 7-29-2008
As I recall, this app uses the previously-proven-to-be-insecure keychain, no?
So, why bother with it at all?
Reply
Mr.T. said 3:53PM on 7-29-2008
Because it's a whole lot safer than to have all your saved passwords visiable accessible in firefox etc., through the "show passwords" options, screenshot: http://mulder.dk/ss/Saved_Passwords-20080729-213708.jpg
I like 1Password :)
David Teare said 4:04PM on 7-29-2008
We don't use the keychain on the iPhone/iPod touch for storing your data. On the Mac edition we use the OS X Keychain Services to create a new keychain called 1Password, allowing you to secure it as much (or as little) as you want.
Fritz Laurel said 5:05PM on 7-29-2008
That's just it, though -- if the keychain's involved then it's NOT a whole lot safer.
Thing is, I'm not even sure if the keychain exists on the iPhone (but it's OSX, so why wouldn't it), but if I were going to use the iPhone version of this app I would only do so because I was using the desktop version that synced to the iPhone vers. (Could you imagine entering in all the passwords I have for several clients on the iPhone keyboard?? Yikes!)
So, since the desktop app does in fact use the keychain, I will not be using it, nor this iPhone version. No matter how great the UI, it is an insecure app. If only there were an option to not use the keychain...
David Teare said 6:58PM on 7-29-2008
I'm not following Fritz. The OS X keychain is open source, used on every single Mac, and is maintained by Apple. That's pretty damn secure. It does use Triple DES instead of AES, but I'm sure Apple has that improvement planned (they have it for DMGs already so I'm sure they have it planned).
Keychain on iPhone, however, is a different beast. Since you never provide a password, the only security it can have is 'security through obscurity'. I'm sure they made it obscure, but until I see a password I can't imagine how it could be secure.
Fritz Laurel said 1:55AM on 7-30-2008
Hi David -- for one, the whole idea behind the keychain is that you enter one password and then have access to all of your various passwords. This, though, defeats the purpose of having more than one password.
So, for someone like myself who maintains many accounts for my clients, I wouldn't want someone to have access to all of my client passwords just by figuring out my main password. Why people consider this acceptable is beyond me.
Second, perhaps you missed this article from 3/3/08 about a vulnerability in the login window that gives up your (keychain) password:
http://www.tuaw.com/2008/03/03/mac-os-x-password-recoverable-from-ram
Just because something is "open source, used on every single Mac, and is maintained by Apple" does not make it secure.
Q.E.D.
David Teare said 7:19PM on 7-30-2008
The whole point is to use one strong password instead of a 100 easy to crack passwords.
If you are concerned about someone is going to go through the trouble to freeze your ram and steal your login password, then lock your 1Password keychain and don't store the password in the login keychain. It's a separate keychain and the password is not stored anywhere.
totoro said 3:42PM on 7-29-2008
I saw in the RSS feed of new App Store Apps something about a bug in 1.0, and they had 1.01 queued up waiting for Apple's approval? Probably best to just wait for that?
Reply
David Teare said 4:07PM on 7-29-2008
Version 1.0 is what's available in the App Store at this moment. We submitted it 2 weeks ago and since then have made many improvements and today we submitted version 1.2.
1.0 works fine but 1.2 adds a lot of polish and bug fixes.
totoro said 4:09PM on 7-29-2008
thanks, david! Love 1Password on my Mac-looking forward to trying it on the iPhone.
Hobbes said 4:20PM on 7-29-2008
Anxiously awaiting for version 1.2. The current version does not work at all for me. It crashed right after the unlock screen. I already rebooted, uninstalled, installed again and nothing. When it works, that is, I manager to get in, the logins do not. I click any of my logins (synced from my Mac) and it does not fill out the form.
Hopefully Apple will approve the update soon. I love 1Password on my Mac and loved the stylish interface on the iPhone app. Very cool.
Wish list: allow logins to be deleted on the iPhone (not sure if this is not in the update already)
Kudos to the developers. Even though it has some bugs it's very promising and I can't wait to get the update.
Galley said 3:44PM on 7-29-2008
I can't figure out how it's supposed to log in to web pages, or is it even supposed to?
Reply