Dropbox Authentication and 1Password [Link]

August 28, 2012 by Gabe | [mmd] | ℳ↫

From AgileBits:

The bottom line is that I am recommending that 1Password users not be early adopters of this .

It's great that Dropbox is getting serious about security, but to my recollection their biggest security breaches had nothing to do with user authentication. Sure, there were smaller breaches caused by reusing passwords, but the biggest were self inflicted by Dropbox.

I use the hell out of my Dropbox account and I'm glad they are really focusing on security. But it feels like this new feature is a little over-hyped. I'd like to hear more about an overall security strategy for Dropbox as a company.

UPDATE: I missed the update at the bottom of the article:

In conjunction with Dropbox moving this out of beta and the experience of lots of 1Password users switching over to two-step authentication, I’ve become much more optimistic about when we will feel more comfortable recommending this to 1Password users. I changed my guess of “months” to “weeks