hi, taking this topic here from twitter. just trying to get my hands around the safety of moving from a private sync type product like SpashID to 1password. i am not saying that the splashid product is perfect security, but my understanding is that the entries are in a file, which remains encrypted local to the device, local to your mac, local to your pc, etc. with your product placing the file, keychains, files, whatever they are on icloud or dropbox, - without all the tech details - is that as safe if not better? in one model someone has to get a hold of the file to try and break it, in the other model it's out there already, with basic password security keeping someone with the tools from downloading the file to crack. no?