Research: Many mobile password managers offer false feeling of security

In a newly published research by Elcomsoft's researchers, the company argues that many of the mobile secure password managers aren't as secure by design, as originally thought of.

In a paper entitled “Secure Password Managers” and“Military-Grade Encryption” on Smartphones: Oh, Really?", they review 17 popular passwords management apps available for Apple iOS, and Blackberry platforms such as:

BlackBerry's Device Backup, Keeper® Password & Data Vault, Password Safe - iPassSafe free version, My Eyes Only™ - Secure Password Manager, Strip Lite - Password Manager, Safe - Password, iSecure Lite - Password Manager, Ultimate Password Manager Free, Secret Folder Lite, as well as the following paid applications, SafeWallet - Password Manager, SplashID Safe for iPhone, DataVault Password Manager, mSecure, LastPass for Premium Customers, 1Password Pro, BlackBerry Password Keeper, and the BlackBerry Wallet.

Their conclusions? The most commonly encountered flaw, is the fact that the master password and user passwords are stored unencrypted, leading to potential compromise of the device thanks to a physical security breach.

Moreover, the vendor argues that "Many password management apps offered on the market do not provide adequate level of security. We strongly encourage users not to rely on their protections but rather use iOS or BlackBerry security features".

Go through the report in order to find out more about the test results for each and every paid, and free mobile application.