In Settings you can configure various security and convenience features as described below.
These options allow you to customize several security options.
The first option lets you configure how long the Vault will “stay open” if you switch out of it by either switching applications (e. g., pressing the home button) or performing a scan. You can require PIN (or TouchID) re-entry if you switch out of the Vault in any way, or allow up to 5 minutes during which the Vault will stay open if you go in and out of it. Note the timer is reset each time your re-enter the Vault. Consider your personal security/convenience tradeoff priorities.
You may also configure how many times a failed PIN authentication may be attempted before the Vault is locked out.
Successfully authenticating with your PIN resets the failed attempts counter.
Security Settings changes only take effect (are saved) if the Done button is tapped after making changes; tapping Cancel reverts to the previous settings.
PIN authentication is very short and convenient, but less secure as there are only 10,000 possible PIN combinations. PIN security is enhanced in passQi by always performing a cloud security check in the background to determine if the user has remotely disabled the password database because the iOS device is lost, stolen, or missing. (Visit passqi.wpengine.com or call 678-2LOCKUP to disable password database remotely). To decrypt the password data stored on your device requires the presence of unique codes derived from this cloud checkin.
Sometimes, you may wish to access your password vault even if there is no network available; if you have configured a passphrase, you can authenticate to the Vault with local passphrase authentication.
A passphrase should be something easy to remember, but hard to guess. It needs to contain at least eight words with an average word length of four letters.
A passphrase is also required to perform backup. Backups are always encrypted using a key that is derived from your passphrase (which is why the passphrase needs to be so long). If a backup is reloaded to the same device that created it, it is not necessary to enter the passphrase to decrypt it, but if you lose or upgrade your iOS device and want to restore you passwords to a new iOS device, or simply delete and re-install the app, you will need to decrypt the passwords with the passphrase used when created on the original phone (or app installation). Deleting the application and reinstalling will not only delete your device passQi password database, but re-installing will change the master encryption key; use of a passphrase allows you to migrate backups to new phones or new application instances.
Note that backup is not automatic; you need to explicitly request a backup in Settings every time you wish to make a new copy.
Be sure to remember your passphrase as it will be necessary to restore your backups to any other device or instance of passQi that you install. You may wish to write it down and store in a place you are confident cannot be compromised.
Because the application design philosophy is to maximize user control, transparency, and security, passQi passwords are NOT automatically backed up to either iTunes or iCloud. It is of course very desirable to have a backup however, and this is provided by allowing you to back up your passwords to a configured Dropbox account.
The first step in enabling backup is to create a passphrase (see above). If you do not have a passphrase configured, the Backup feature will require you to create one..
Backups are performed by linking to a Dropbox account, so if you do not have a Dropbox account, you will first need to get one (visit www.dropbox.com). Dropbox provides free basic accounts.
The “Link To Dropbox Account” button (visible only if you have created a passphrase) will launch either the Dropbox app or the Dropbox web site, and perform authorization to link the app to your Dropbox account.
The passQi app will relaunch automatically, and the “Backup” button will appear. Each time you perform backup, the old backup is saved as “previous” and the new backup is saved as “latest”. You can save and rename these files from with your Dropbox account, and they will be visible to restore under the new name (provided they are in the Dropbox Apps/passQi folder). passQi will create and manage the “latest” and “previous” files, but you can copy and rename as many files as you want in the Dropbox folder (using Dropbox), and the restore function will list them as well.
Note that though the backup files are encrypted, you should consider your comfort level and security requirements in choosing to leave them on Dropbox, or to immediately copy them to your desktop and secure them there, and delete them from the Dropbox environment. In general, (permanent) cloud storage of passwords is not an ideal practice. The passQi backup files are stored in the passQi folder in the Dropbox “Apps” folder.
When backup is configured, a “Restore” option is added to settings. Tapping it will display a picker of all of the eligible files in the Dropbox Apps/passQi folder; select one, and the system will begin to restore the passwords from this file.
If there are conflicts between and existing domain/username and a domain/username in the backup with a different backup, a table of conflicting passwords will be displayed, and you can choose to “keep” or “restore” to either keep the existing password already in the Vault, or overwrite it by restoring the password from the backup, by tapping and checking or unchecking the listed row, and then tapping “Accept” to process your choices.
Username/password combinations which match existing ones in the Vault are ignored, and username/password combinations which are unique to the restored backup are automatically added.
If you have deleted your backup from the App folder on dropbox, you need to copy them back to to the Apps/passQi folder on Dropbox first in order to restore them. only valid passQi files with “.passqi” as the file suffix will be visible in the restore feature.
The only configuration required for using the mobile extension (available on iOS 8 only) is to tap the “Share” icon in Safari, then tap “More” and switch on the passQi extension.
Note that in order to use bridging with the passQi bookmark, you need to have “Allow Third Party Cookies” enabled in Safari settings on the iOS device, or in iOS 8, “Allow from websites I visit” (and be sure to visit www passqi.com at least once from your mobile Safari browser).
A message describing the desktop configuration steps — ie, dragging the passQi bookmark into your browser from passqi.wpengine.com.
This help page.
The passQi registration and usage model is designed to be entirely anonymous. However, we’d love to know who you are (and what you think of the product), but we do not collect or associate any personally identifiable information (ie ., email address) during registration (the phone number collected is used only to provide the SMS loopback, and is not stored after registration).
This option provides a convenient way to opt-in to our mailing list to receive bulletins and updates regarding the product. You can manage your subscription at passqi.wpengine.com as well, and of course, easily opt-out at any time. Simple enter your email address and tap “Subscribe” and you will soon receive a confirmation email. Your email address is remembered by the application and can be used to unsubscribe at any time by tapping “Unsubscribe”. The mailing list is managed completely independently of the passQi app cloud infrastructure.
Information about passQi and passQi Inc.