This is a staging forum for AgileBits, not an official support forum. Visit http://discussions.agilebits.com instead.
Virtual keyboard for input of secure data?
Dear AgileBits,
First, I really love your product!
While speaking with another software developer in my group recently, we were discussing security vulnerabilities, and he described a demonstration that his advertising friend gave him, wherein his friend directed him to a website; when he simply visited that website, and without taking any other action, his friend was able to gain control of his computer, and began launching a series of windows, etc. My co-worker said his Gmail password had recently been obtained and used by someone in China. I asked how it happened, and he said his advertising friend assured him that it is relatively easy for a clever and unscrupulous web designer to capture all of the keystrokes entered during a web session.
I am wondering if you have ever considered implementing a virtual keyboard for 1Password, one that would completely circumvent the normal keyboard interface by allowing input via mouse, trackpad, etc., to make it much more difficult (perhaps impossible?) for such critically private input to be captured?
Thanks for any feedback on this subject,
Bruce
First, I really love your product!
While speaking with another software developer in my group recently, we were discussing security vulnerabilities, and he described a demonstration that his advertising friend gave him, wherein his friend directed him to a website; when he simply visited that website, and without taking any other action, his friend was able to gain control of his computer, and began launching a series of windows, etc. My co-worker said his Gmail password had recently been obtained and used by someone in China. I asked how it happened, and he said his advertising friend assured him that it is relatively easy for a clever and unscrupulous web designer to capture all of the keystrokes entered during a web session.
I am wondering if you have ever considered implementing a virtual keyboard for 1Password, one that would completely circumvent the normal keyboard interface by allowing input via mouse, trackpad, etc., to make it much more difficult (perhaps impossible?) for such critically private input to be captured?
Thanks for any feedback on this subject,
Bruce
Flag
0
Comments
-
When you enter your master password, this is what the ellipsis button is for.Flag 0
