The Trinity College Information Security Team recommends some password managers that you can use in your daily life. Each of these Password Managers uses highly advanced encryption and private adequate security for your passwords. While we recommend these tools, not all these software options are supported by Trinity College. If you have questions or support concerns, you may be directed to contact the software vendor directly.

Each of these password managers has its pros and cons. The password manager that is best for you may not be best for a co-worker or family member, so select which manager you use based on the features and functionality that fit your needs.


Bitwarden

Platforms: Windows, MacOS, Linux, Android, iOS
Free-version Limitations
: No
Two-Factor Authentication: Yes
Browser plugins: Chrome, Firefox, Opera, Edge, Safari, Vivaldi, Brave, Tor Browser,
Mobile App PIN Unlock: Yes
Biometric Login: Depends on the device
Storage Option: Bitwarden processes and stores all data securely in the Microsoft Azure Cloud in the US using services that are managed by the team at Microsoft.
Price: Free for core features and sharing, Premium Plan-$3/month

Bitwarden gives you the power to create and manage unique passwords, so you can strengthen privacy and boost productivity online from any device or location. Protect your online data using a password manager you can trust. Bitwarden conducts regular third-party security audits and is compliant with Privacy Shield, HIPAA, GDPR, CCPA, SOC2, and SOC3 security standards. Visit their website for more information.


LastPass

Platforms: Windows, Mac, iOS, Android, Linux, Chrome OS, Windows Phone, watchOS
Free-version Limitations
: Single device, Limited password sharing, limited 2FA
Two-Factor Authentication: Yes
Browser plugins: Chrome, Firefox, IE, Safari, Edge, Maxthon, Opera
Form Filling: Yes
Mobile App PIN Unlock: Yes
Biometric Login: Face ID, Touch ID on iOS & macOS, most Android & Windows fingerprint readers
Storage Option: Cloud
Price: Free (Premium Plan-$36/year, Family Plan- $48/year)

LastPass is an enterprise-level online password manager. The basic version is free for use, with a Premium version available for a cost. The basic version provides most of the same features as the Premium version, except it limits the number of devices you can connect, lacks the security password audit feature, customer service support, and the capability to share password vaults with family members. Other Premium Features: The LastPass Security Challenge features a password auditing tool alerting you of weak, old, compromised, or reused passwords. LastPass will provide you with a new password for those accounts. Visit their website for more information.

*The Trinity College Information Security Team provides premium licenses if employees need the capability to share passwords with other co-workers. To inquire please contact helpdesk@trincoll.edu


Apple’s iCloud Keychain

Platforms: Mac, iOS
Free-version Limitations
: N/A
Two-Factor Authentication: Yes
Browser plugins: Safari
Form Filling: Yes
Mobile App PIN Unlock: Yes
Biometric Login: Face ID, Touch ID on iOS & macOS
Storage Option: Cloud
Price: Free

Apple’s iCloud Keychain is recommended with limitations. Apple’s iCloud Keychain (used by Safari, iOS, iPadOS, and macOS) is a password manager that allows you to sync and share your passwords between any Apple device that you are logged into using your iCloud account. Apple’s keychain functionality can be used by other applications to store items, such as public and private certificates, passwords, etc.

Apple does not have access to your stored passwords when they are stored on their servers. The encryption mechanism that is used contains a general key that is derived from your iCloud password as well as a separate, unique device key for each device attached to your Apple iCloud account. The encryption mechanism is unique to Apple, though they use standard algorithms. More details on Apple’s Keychain syncing can be found here.


1Password

Platforms: Windows, Mac, iOS, Android, 1Password X Platforms: Linux, Chrome OS
Free-version Limitations
: Single mobile device
Two-Factor Authentication: Yes
Browser plugins: Chrome, Firefox, IE, Safari, Edge, Opera
Form Filling: Yes
Mobile App PIN Unlock: Yes
Biometric Login: Face ID, Touch ID on iOS & macOS, most Android fingerprint readers
Storage Option: Locally or Online (Cloud)

1Password is a trusted password manager app that keeps your login information private and secure. 1Password does lack a free version, but you can check it out for 30 days before signing up. An individual subscription comes with 1GB of document storage and optional two-factor authentication additional security. A travel mode lets you remove your 1Password sensitive data from your device when you travel and then restore it with one easy click when you return, so it’s not vulnerable to border checks. On Macs, you can use Touch ID to unlock 1Password, and on iOS devices, you can use Face ID, too. Other features: Watchtower, which notifies you if you have an account that may have been compromised (based on the URL and news reports), a weak password, or even a reused password. Visit the website for more information.


KeePass

Platforms: Windows, Mac, iOS, Android, Linux
Free-version Limitations
: No
Two-Factor Authentication: Yes
Browser plugins: None
Form Filling: No
Mobile App PIN Unlock: Depends on the version
Biometric Login: Depends on the version
Storage Option: Local
Price: Free

KeePass is a local-only database of passwords. While Dropbox, iCloud, network shares, and USB drives can be used to share the database file, care should be taken to close the file on one computer before opening it on another.  If you are concerned about storing your passwords “in the cloud”, KeePass is the best free local storage option for storing passwords on your laptop, desktop, or mobile device. Visit the website for more information.

*KeePass is open source, and the source code is available for your review. Plugins may or may not be open source, and care should be used when using any available plugins as ISO has not evaluated any of the available plugins. Browser integration is only available using plugins.