User profile for user: Michael9009
Michael9009 Author
User level: Level 1
137 points

How Safe Are Keychain and iCloud Keychain?

I have been saving my login passwords the old way: with pen on paper. But the list is getting too long and is cumbersome to use. Rather than using third-party solutions like 1Password or LastPass, I have been thinking to use Apple's solution: Keychain. I would assume that the local Keychain on my Mac is secure because I use FileVault. But how safe is iCloud Keychain? Is it encrypted? Would Apple or other parties (e.g. government, hackers) be able to get easy access to the passwords stored in iCloud? Would it not be better to entrust Apple with our passwords, rather than third party app developers?


Also, if safe and secure, how would I turn on iCloud Keychain? Once turned on, would it work across OS X and iOS platforms?


Thanks.

MacBook Pro with Retina display, OS X El Capitan (10.11.5), i7 2.6GHz, 16GB, 1TB SSD

Posted on Jul 5, 2016 12:49 PM

Reply
8 replies
User profile for user: dianeoforegon
dianeoforegon
User level: Level 5
7,305 points

Jul 5, 2016 6:39 PM in response to Michael9009

There are certain items that must be in the Keychain app like email account passwords or you would have to enter every time your account connects. For sites where you log in with your browser, you can select to use the iCloud Keychain, but this only works in Safari and not other browsers.


The iCloud Keychain is an ideal choice for certain tasks, but there’s no reason you can’t use it alongside a third-party tool like 1Password.


This article talks about other password managers too. FlippedBITS: 1Password Versus iCloud Keychain


Note: If the iCloud Keychain is disabled, the iCloud keychain is replaced with a “Local Items” keychain that has the same contents as the iCloud keychain. Any items added to the Local Items keychain will be pushed out to other devices when iCloud Keychain is re-enabled.


You might find these FAQs helpful


Frequently asked questions about iCloud Keychain - Apple Support

Reply
User profile for user: JimmyCMPIT
JimmyCMPIT
User level: Level 7
29,306 points

Jul 5, 2016 12:55 PM in response to Michael9009

as to your second question about how could you need to realize security is only as good as what it protects against. If someone is trying to decrypt your password on a 10 year old laptop, or on a super computer with tens of thousands of GPU's in parallel thats two different outcomes, if they have some other method you or Apple does not know about that has made all of that obsolete thats another outcome.

Reply

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

How Safe Are Keychain and iCloud Keychain?

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up