I spend a significant amount of time online – and do so using a myriad of online services – from accounting to banking, from email to my various blogs, from e-commerce sites to airline services – I live in a world of usernames and passwords. Like others I tend to have a few variations on a theme with passwords, an exceptionally risky, yet pragmatic response to login hell. So when I find a solution that takes care of all my password woes, remembers them for me, suggests tem for me and does a bunch of other stuff, even between different computers, I start getting pretty interested.
So it was that I recently stumbled across LastPass, a SaaS solution that promises to be “the last password you’ll ever remember”. LastPass combines a really well-designed web service with browser add-ons for the majority of browsers and also throws in support for most mobile handsets as well. Across all devices and browsers, LastPass remembers your password, give advanced features such as automatic form filling and password generation, and keeps everything secure and tidy.
If I step back and think for a minute, I could get concerned about one web service (and a free one at that) holding all the passwords to my digital life, but LassPass is just so good I’ll take some faith from their security and technology disclosure page and keep on using it. After all it’s better than using the name of my first born child for every single web site and service I use!
There’s the odd thing I’d like them to deal with, so in that spirit here is my wish list:
- Integration with chrome for automatic password generation and form-filling
- Native integration with the windows mobile web browser
- Support for multiple passwords for sites (I have three internet banking log ins)
- Support for two factor authentication devices (and preferably the ability to use one TFA device for all sites – which would require by in from third parties but still..)
- Charge a little for all versions – people feel more secure when they pay for a service!
Thanks for the kudos!
Just wanted to post a follow up to items on your wishlist:
* Integration with chrome for automatic password generation and form-filling
We’re improving our Chrome integration on a daily basis. We’re waiting for Google to open up more parts of the browser so we can make our integration tighter.
* Native integration with the windows mobile web browser
We have a native Windows Mobile client that integrates with pocket IE, but will be working towards a better native solution with Windows Phone 7.
* Support for multiple passwords for sites (I have three internet banking log ins)
We already support this: http://lastpass.com/help.php?topic=multlogins&nw=1&fromwebsite=1
* Support for two factor authentication devices (and preferably the ability to use one TFA device for all sites – which would require by in from third parties but still..)
We have 3 multifactor authentication offerings: YubiKey, Sesame, and Grid. Grid is free for everyone while YubiKey and Sesame require a premium LastPass membership.
Check out our screencasts on them at http://lastpass.com/support_screencasts.php
* Charge a little for all versions – people feel more secure when they pay for a service!
While i’m not sure everyone would agree with you here…we do charge a nominal fee for mobile client support and multifactor authentication as well as out Enterprise offering:
http://lastpass.com/features_premium.php
Again, thanks for the kinda words!
LastPass.com
Nice to see a reply from the authors. It shows a mature mindset to listen to the voice of the customer at the right places (this blog post was one of them).
Charging for the service is better as it is now IMHO. I wouldn’t have tried LastPass if I had to pay for the basic features (which is quite rich). I am still experimenting whether it will fit my needs, but I am quite positive it will do so. I am going to buy an Android phone in the next days (Galaxy, or an HTC), and I am sure I will pay for the extra mobile integration when I will be there.
Thanks for this great service.