After being a very long user of 1Password w/o being a subscriber, I decided to give the family options a try, as it seemed to make sense for various reasons. But now I'm wondering if it's a reduction in actual security.
Before using the subscription model, I really liked the idea that my 1Password data wasn't available simply by logging onto a website. I hate that all my passwords are available online via a web browser. When using Dropbox or iCloud, an attacker would need to compromise that account AND have my 1Password password. Seems like more work than all being bundled together. I wish the 1Password online access was simply for account management, and didn't allow access to actual passwords. Seems like this adds attack vectors, such as exploitable bugs could be found in browsers.
I also can't help but believe that the 1Password organization has easier access to my data, if it lives on their servers, my password is entered on their website, and when access to all my passwords is available via a web interface. Seems less risky if you use Dropbox or Apple to host the data, as no single organization is hosting the data and dealing with the password. While, obviously, there's a lot of trust necessary to use a close-sourced password manager, seems the trust is be even greater in this situation.
I really liked that U2F security keys can be used, but seems that the time-based app authentication continues to work too, so the security advantage seems a bit muted. I was also unclear, when signing in on an iOS device, the 1Password message says to plug in the U2F key (or you can cancel and use the time-based authentication app). Will the app work with a Bluetooth U2F key? Or do you have to use a key that physically plugs into an iOS device? I'm also unclear, can I delete my time-based app, and add several U2F keys to my account? Just a lot of details with 2FA that I don't see mentioned.
And how about adding an option for users to make 2FA required for EVERY 1Password.com log in? I guess I worry there are session cookies, or some other data, which could be exploited by an attacker.
I also realize it's possible to make mistakes adding accounts. It's my own fault, but at one point I mistakenly loaded my own 1Password data onto my son's iPad. I immediately used the "delete all data" and realized I needed to add his account a different way.
Do these concerns make sense? Is there any compelling argument having my passwords available on the 1Password site is actually more secure (assuming I'm using solid security on my other host)? Note that I'd rather have more security and less convenience, whereas I know some people prefer a different balance.
Finally, I've put a fair amount of effort into updating my family's Mac apps from 6 to 7, updating the vault types, and using the system this way with the free trial, assuming I'd move forward with it. But now I'm wondering how difficult it might be to go back to the model of using the purchased 1Password software, and syncing via Dropbox or iCloud. Is there a guide for converting back to that model? And if I do, I'm unsure if I will need to (or should) buy 1Password 7 for Mac to go back to how I was doing it before. Do I need to worry that stopping the trial will cause any confusion regarding the 1Password app I previously purchased for iOS?
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided