Dashlane is an app for both Mac and PC: the idea is to have a very secure app where you can store all sorts of data (addresses, phone numbers, credit cards, passwords, etc) and browser plugins that allow you to use this data without having to type it in. Our concept is further described in this video here: https://www.dashlane.com/en/epiphany<p>Several key points about our security:<p>- Each Dashlane user has a master password, solely used to encrypt data locally and another key for each device used for authentication against Dashlane’s servers<p>- The Master password is derived using more than 10,000 PBKDF2 rounds with a 32 bytes random salt to produce the encryption key used to encrypt user’s data locally. Encryption algorithm used is AES-256 (CBC mode).<p>- Neither the Master Password nor any derivative of it is ever sent to or stored on our servers, nor locally on your computer. When synchronized, personal data are sent encrypted to our servers.<p>If you are interested in details about our security, here's a white paper that explains in technical words exactly what we do:
https://www.dashlane.com/download/Security-Whitepaper-Final-Nov-2011.pdf<p>Anyway, I would love to have HNers testing our product, so I have 300 invites for those who would be interested: https://www.dashlane.com/hackernews.<p>Please let me know what you think about it, the Dashlane team and me would be happy to talk with you.
Interesting guys. I've been waiting for something similar for a long time now. Quick question though: how do you map all my information to the input fields in each form. Do you kind of "crowdsource" it the first time a user comes across a new form and manually fill it in?
Do you guys plan on keeping this service free? If yes, how do you plan to monetize the service? By mantaining such high standards in terms of security of the data, I assume that you're giving up on aggregating behavioural data that could be very valuable for advertisers.