(no title)

We actually use 1Password internally, but once or twice a week we were getting passwords emailed or IMed to us from clients and other people we worked with, so we added the secrets feature to Torpedo for those folks, to at least greatly reduce the chance of those passwords from falling into the wrong hands if someone's smartphone is stolen or email is hacked.

Also, the contents of secrets are encrypted with a randomly generated key, using AES 256 bit encryption, before being stored in our database. The key is then embedded in the share URL for the secret. We don't store the key nor the URL in our DB, so the only way to decrypt it is with the URL.