This is a staging forum for AgileBits, not an official support forum. Visit http://discussions.agilebits.com instead.

Virtual keyboard for input of secure data?

Dear AgileBits,



First, I really love your product!



While speaking with another software developer in my group recently, we were discussing security vulnerabilities, and he described a demonstration that his advertising friend gave him, wherein his friend directed him to a website; when he simply visited that website, and without taking any other action, his friend was able to gain control of his computer, and began launching a series of windows, etc. My co-worker said his Gmail password had recently been obtained and used by someone in China. I asked how it happened, and he said his advertising friend assured him that it is relatively easy for a clever and unscrupulous web designer to capture all of the keystrokes entered during a web session.



I am wondering if you have ever considered implementing a virtual keyboard for 1Password, one that would completely circumvent the normal keyboard interface by allowing input via mouse, trackpad, etc., to make it much more difficult (perhaps impossible?) for such critically private input to be captured?



Thanks for any feedback on this subject,

Bruce

Comments

  • Stefan von Dutch
    Stefan von Dutch Community Moderator
    When you enter your master password, this is what the ellipsis button is for.
  • Bruce, you can read about the virtual keyboard in [i][url="http://help.agilebits.com/1Password_Windows/virtual-kbd.html"]How do I foil key loggers?[/url][/i] in the [i]FAQ[/i] section of the user's guide.
  • Is there a virtual keyboard for 1PasswordAnywhere? If I had to use someone else's computer to obtain my data in an emergency, I would be using 1PasswordAnywhere. And God knows what might be on that computer...
  • DBrown
    DBrown
    edited October 2011
    I don't believe so, aprescod.