Find the Best Password Manager Companies
Compare Reviews for Top Password Manager Companies
Read 152 Reviews
Roboform is for those that don't want to have to keep track of all their passwords or repeatedly fill in information like their names, addresses and phone numbers. Their password management services are offered for free.
Read 69 Reviews
LastPass is a password manager offering protection for online information, and is designed for those who need to access multiple devices from one account. Users can download and browse while keeping their passwords secure.
Read 115 Reviews
Dashlane makes daily online activities easier by remembering users' passwords, encrypted using AES-256. It also automatically logs on to its users' favorite sites and keeps their payment information secure in a digital wallet.
Read 16 Reviews
Keeper features a streamlined design and easy-to-use interface that integrates with all mobile devices. Users can store passwords, automatically fill in forms, and use the Keeper Secure File Storage to securely store documents.
Read 26 Reviews
Sticky Password has an intuitive interface that makes securing passwords quick and easy. Upgrading to Premium gives users all the features of the basic version plus syncing functionality, cloud backup and additional support.
Read 8 Reviews
Geared more toward business and commercial clients, Thycotic is the password management system of choice for IT professionals. It allows users to manage their passwords and improve the overall security of user accounts.
|BeyondTrust||Read Author Review|
BeyondTrust offers secure password management as well as enhanced options for network security, compliance reporting and account management for small businesses and personal use. Users can choose from a selection of packages.
|CloudEntr||Read Author Review|
CloudEntr lets users navigate the Web, and log in to all of their favorite sites and accounts with a single sign in. It also allows users to decide who to share their information with and how of it much to share.
|OneLogin||Read Author Review|
OneLogin helps businesses streamline company logins, increase efficiency and build client trust. The program simplifies identity management with secure, one-click access for all enterprise cloud and on-premises applications.
|Password Genie||Read Author Review|
Password Genie is a password management and information security app designed for people who want to access online accounts from multiple devices while minimizing the risk of identity theft and other types of fraud.
What features matter most in a password manager?
Saving your passwords in a password manager program isn’t safe if anyone who breaks into the software can immediately access them. Password encryption adds a layer of security by making it harder for thieves to access stolen passwords.
- Multiple encryption layers: Most password managers require consumers to unlock them with a password, but that’s not good enough; if thieves get the master password, they can view the passwords. Passwords should have at least two or three layers of encryption to make it hard to retrieve them after unlocking the password manager.
- Restricted access: Some password managers allow users to restrict the geographical locations that can access the software so that thieves in other countries can’t get a consumer’s passwords.
- Two-factor authentication: Password managers may require users to put in a flash drive as a “key” before unlocking passwords.
Secure resource usage
If passwords are saved using insecure resources, thieves can retrieve them by breaking into the user’s computer itself. Using secure resources eliminates this problem.
- Secure memory: The password manager writes password information only to secure memory components so that if a hacker accesses the user’s hard drive, he or she can’t easily find passwords.
- Cryptographic signing: The software requires internal processes to verify their authenticity using cryptographic signing. This prevents hackers from hijacking these processes for malicious purposes, including password theft.
- Secure mobile integration: Password managers have safeguards in place to verify the authenticity of commands sent from mobile devices. These processes ensure that only authorized devices are used to access the password manager and that the user authorized such access.
Rather than using third-party applications, the password manager stores passwords and attempts logins itself. This is more secure because the password manager itself has control over all such processes.
- Local storage: Passwords are stored in encrypted form on the user’s computer rather than in the cloud or on a third-party application’s server.
- Local encryption: The password manager is responsible for all levels of password encryption.
- Local site certification: The password manager searches for and verifies site certificates before entering the user’s login credentials rather than relying on a third-party credentialing service.
If a password manager service isn’t easy for consumers to use, it defeats the purpose of using it. User-friendly services make it easy for even the least computer literate users to store and retrieve passwords.
- Intuitive controls: The service has large buttons and clearly-named menu commands to make it obvious what to click or where to go to save, retrieve and input passwords.
- Provides password creation hints: Users may not know how to create secure passwords. The most user-friendly password managers provide tips and hints to help accomplish this task.
- Offers password recovery: Password managers must have their own password protection to keep personal info safe, but what if a user forgets the password? Some password managers have user-friendly options for recovering lost passwords without compromising security.
Password managers need to be secure so that consumers can be comfortable using them. A verifiable design goes a long way towards increasing comfort level because users can check out the programming and find out how the software works.
- Open source code: The programming code used to design and run the software should be available online for anyone who wants to see it.
- Design and execution code matches: The same programming used to design the software should be used to run specific functions.
- Peer review access: Source code should be peer-reviewed prior to the password manager’s release. Users should have access to the peer reviews so that they can learn about any potential weaknesses and how they were resolved prior to release.
Master password security
The password manager’s master password is like the key to a house’s front door; anyone who has it can open the software. Effective security requires that password managers take precautions to stop master passwords from falling into the wrong hands.
- Password requirements: Some password managers require users to include numbers, letters and sometimes symbols such as # or %. In addition, sometimes passwords are required to be a certain length, and passwords that spell words may be banned. Requiring users to follow these rules ensures that master passwords are more secure than they otherwise might be.
- Password expiration: Requiring users to change their passwords periodically helps increase security because even if thieves get the old password, they still won’t be able to get into the system. Some password managers also don’t allow users to recycle passwords; the new password must be substantially different from any password used over the past several months.
- Full password recovery is disabled: If a user loses his or her password, the best password managers don’t provide it. Most software first displays a hint the user has set up when he or she reports a lost password. If the user cannot retrieve the password and requests a reset, he or she receives an email to a link with a temporary password that will only work for 24 hours. This reduces the risk that a thief will request a “lost” password.
What are different types of password managers?
Integrated password managers
Some password managers are integrated into other software. For example, web browsers may ask users if they want to save a password when they log in to a website.
Standalone password managers
Some password managers are separate pieces of software that must be installed on a user’s computer.
Web-based password managers
The user signs into a website in order to access and use his or her passwords.
Hardware-embedded password managers
The user’s computer contains a microchip or other piece of hardware that can save passwords and authenticate the identity of the person trying to retrieve the password.
Who uses password managers?
CEOs, managers and other executives
Upper-level employees at large companies may have dozens of passwords they must keep track of to log in to the secure systems they use to do their jobs. For these people, a password manager is an indispensable productivity tool.
People who can’t remember passwords
Some consumers have a hard time remembering passwords and may be tempted to use the same password for every online account or use insecure passwords like “password.” These people need a password manager to help promote the security of their accounts.
Small business owners
Small business owners have a ton of things to remember and may need to log in to various online accounts. Using a password manager gives them one less thing to worry about.
Password manager FAQ
- Are password managers safe?
- Yes, reputable password managers use strong encryption to protect your information from malware or hackers. Nothing is 100% safe, but research has shown that using a password manager is safer than not using one. Users can easily implement varied, more complicated passwords, which makes their accounts safer.
- Can a password manager be hacked?
- Technically, yes. Security is rarely a yes or no question. There is no 100% secure site, but password managers maintain strict security measures to protect their clients’ information. Most password managers only save your master password locally, which protects them from server breaches.
- Are there any free password managers?
- Yes, there are many free password managers, including:
- Roboform (an Accredited Partner)
- True Key
- Are password managers any good?
- Yes, password managers are more secure than using the same password everywhere or trying to remember many different passwords. Password managers:
- Conveniently store your existing passwords
- Create complex new passwords when needed
- Can use biometric data, like facial recognition or your fingerprint scans, to protect your information
- Should passwords be encrypted or hashed?
- Ideally, passwords should be both encrypted and hashed. Each of these security functions works differently to protect your password, and using them together makes your password more secure than using either alone.
- What are do’s and don’ts of password security?
- Use a password manager
- Use uppercase and lowercase characters
- Use a different password for every website
- Use 10 or more characters
- Change your passwords regularly
- Use any part of your name in your passwords
- Pick common choices like “password”
- Share your password with anyone
- Use adjacent keyboard combinations like “12345” or “qwertyuiop”
- Use pet names, family names, birthdays, addresses or area codes in your passwords
- Use your favorite sports or sports teams in your passwords
- How do I manage my passwords?
- The best option is to use a password management program that creates and stores secure passwords for you. You only have to remember one master password to keep everything safe.
- Select a password manager.
- Download the program or browser extension and set up a new account and master password.
- Enter in your existing passwords or wait for your password manager to save them as you access your usual sites.
- If possible, have your password manager run a security check on your accounts.
- Change your passwords regularly. Your password manager remembers these new passwords, which makes it easy to update them frequently.
Thank you, you have successfully subscribed to our newsletter!
Compare Reviews for Top Password Manager Companies
|True Key||Read Author Review|
True Key lets you scan your fingerprint or use facial recognition to sign-in to your password vault. The premium version of True Key costs about $20 a year. It can be used on iOS and Android devices as well as PCs and Macs.
Information in this guide is general in nature and is intended for informational purposes only; it is not legal, health, investment or tax advice. ConsumerAffairs.com makes no representation as to the accuracy of the information provided and assumes no liability for any damages or loss arising from its use.