Protect what matters – even after you're gone. Make a plan for your digital legacy today.
Forum Discussion
When will 1P7 be EOL?
Hi folks,
Like some of the others here, I am saddened to see the departure of standalone licenses and local vaults. I've been with 1Password since version 4 and still enjoy using version 7 multip...
Hi @JC_Denton,
Thanks for asking. The short version we simply don't have an answer on what future support for 1Password 7 will look like after 1Password 8 has been launched on all platforms. What I can provide as an example is after the launch of 1Password 7 for Mac, 1Password 6 for Mac received zero updates, security or otherwise. While past behavior doesn't define the future, it certainly can be helpful. As for using 1Password on iOS, 1Password 8 for iOS will be a separate app in the App Store from the currently available 1Password 7 app.
Additionally, we can't guarantee that functionality will continue to remain as expected as operating systems and browsers make updates. For example, if iCloud or Dropbox were to make a change that we haven't accounted for, syncing may not function as intended.
To touch on your concerns about the integrity of your data:
1Password always works from a local copy of your data. Data you enter is encrypted before it is saved into this local database. The database is stored on your computer, and syncs when you are online. This means you can access your data while you're offline (or in the event that we are offline).
The Secret Key - This is explained more fully in our security white paper, but the short explanation is that if someone were to guess or bruteforce your account password, that still wouldn't be enough to get your data. The Secret Key provides a serious safeguard against this, and the mathematical complexity that it puts in an attacker's path is essentially insurmountable with current attack methods and hardware. It makes it such that even if someone could steal everything from our servers, they wouldn't be able to access any secrets you've stored in 1Password. This key is not available to us, either, so even in the case of a malicious employee with the highest levels of access, your data is protected.
We put our trust in encryption rather than authentication. This is because, in short, "Encryption means that 1Password does not face the kinds of threats a largely authentication-based system would face, and we have used an authentication mechanism that defends against many of the threats faced by many other systems." You can read more about this, if you're interested, in our short guide here: https://support.1password.com/authentication-encryption/
We undergo security audits and pen tests, which you can find here: https://support.1password.com/security-assessments/
Jack
