Finally! Chrome Beta Update Adds Password And Autofill Sync -

[G+_Lennard Harris]

http://www.androidincanada.ca/?p=19724

[G+_Stephen Styffe]

You know, it just seems that password autofill is just a fundamentally insecure concept. Anyone who has access to your device could get access to your passwords. And even if your passwords were password protected (a little bit of irony there...don't you think?), you would want your password database to be encrypted with really strong encryption. Preferably 128/256 bit AES Blowfish or something equally as strong and reputable. 

 

All I'm saying is that Google should get rid of password storage for the sake of their users. Unless they want to take my security advice, which I don't see happening. 

[G+_Android in Canada Blog]

I get your point, but a lot of things can be accessed on your phone.  If worried about security, make use of a strong lock code / pattern. 

[G+_Stephen Styffe]

Android in Canada Blog Well, yeah, but I don't store passwords on my phone...at least not unencrypted. I store my passwords on LastPass, which is a secure method since LastPass has strong security. Steve Gibson even vetted their security and gave it his seal of approval for their implementation of crypto. So my password storage practices are strong, considering that's the only place where my passwords are stored and my LastPass vault password is only stored in my memory, and therefore, no one can find it. 

[G+_Chuck Kelley]

I couldn't agree more Steven Styffe .  LastPass is the only way to go (actually One Password is ok too).  I'm completely against chrome password sync.  It needs to be an encrypted database that requires a separate login.  On my phone I select (Remember Password) and turn on the PIN function for Lastpass.  So I have to enter my pattern, then a separate PIN just for Lastpass but I don't have to enter my super crazy long LastPass password EVERY time.

[G+_Jason Williams]

Safe In Cloud is my password management tool of choice. I'll be sticking with it as well.