1Password User Guide

  1. Requirements
  2. Installing 1Password
  3. Registering 1Password

3-Minute Expert Guide

    Features

      Tutorials

        Frequently Asked Questions

          Knowledge Base

            Contact Us

    Why Should I use the Agile Keychain?

    Since 1Password’s early days, it has used Mac OS X’s Keychain to store data. This served us and our users very well for a while, due to the Keychain’s built-in nature and general security. But over the years, our customers told us that they want more flexibility, even stronger security, and better ways to store more kinds of sensitive data with 1Password. We listened, and we researched, and after more than a year of work deep in our labs, the Agile Keychain was born.

    Feature Comparison

    From a feature standpoint, the Agile Keychain allows us to answer the many requests of our users. Armed with the Agile Keychain, only 1Password can:

    Technical Comparison

    Here is a quick comparison of the OS X Keychain and Agile Keychain from a more technical and file-based perspective:

    OS X Keychain / Agile Keychain Comparison

    File-Level Syncing

    File-level syncing is not practical with the OS X keychain because everything is stored in a single file. Each modification causes the entire file to be recreated and then synced. This hurts performance and increases the chance of conflicts.

    Performance

    The OS X keychain slows significantly as its size increases because it creates an entire copy of the file and then replaces the original.

    Auto-Lock

    The OS X keychain’s auto-lock is based on keychain usage. The amount of time between using the keychain is calculated to determine if the keychain is locked. User activity such as typing or mouse movement is irrelevant. This forces you to specify a much longer automatic lock time than you might like.

    Data Encryption

    The OS X keychain uses Triple DES as its encryption algorithm which is quite secure, but it is growing older and has been superseded by newer encryption algorithms with longer key lengths. The US government has deprecated the use of Triple DES and has set AES as its new standard.

    MobileMe Syncing

    The OS X keychain has direct support for syncing with MobileMe. The Agile keychain does not have this level of integration with MobileMe, but it can be synced using iDisk.

    More Information

    For a full analysis of our need to design the Agile keychain, please refer to the article explaining the history of OS X keychain integration in 1Password.

    For details on how the Agile keychain was designed and made secure, please see the Agile Keychain Design document.

    For details on how to migrate your data from the OS X keychain to the Agile keychain, please see our guide on upgrading to the Agile keychain.