Currently, Firefox is the only browser that offers you the ability to encrypt all of your passwords with one master password. Without this option, other mainstream browser-based password managers are too much of a security risk to use.
In addition, Firefox is also open source and doesn’t pass your personal data to their parent company like other mainstream browsers do.
The Firefox Password Managers features are pretty basic:
- Store/file web-based usernames & passwords
- Master password encryption option
- Import passwords from Chrome/Internet Explorer (Windows only)
Firefox’s browser-based password manager doesn’t compare to stand-alone password manager programs. For example, Firefox can’t generate strong passwords for you.
What's more, Firefox can only store web-based passwords, which means you won’t be able to use the password manager with non-web-based programs/information.
Provided you create a complex master password in addition to using the service, Firefox Password Manager should store your data securely using a 256-bit AES cipher. Unfortunately, Firefox Sync is another story.
In the past, Firefox Sync used a pretty beefy system to secure your data. However, in 2014 they officially switched to a more traditional cloud-based syncing solution. This was done to provide a better user experience, as their past system didn’t allow users to recover or reset lost/forgotten passwords.
Now, despite Firefox Sync passwords being encrypted locally with end-to-end encryption, a key is generated from the username and password. That key is stored online by Mozilla, and can be employed by users to reset their username and/or password.
This raises some concerns, because if Mozilla can access your Firefox Sync account – technically, so can hackers. For more information on the gritty details, visit the official blog post.
With that out of the way, it is also important to know that Firefox Password Manager is a great tool for passwords that won’t make or break you if compromised. As long as you’re careful with what data you entrust to them (probably not your banking information), Firefox’s password manager is useful and convenient.
Ease of use
Firefox Password Manager is extremely simple to use.
1. Navigate to Preferences ->Privacy & Security
2. Under Forms & Passwords, tick the box to Use a master password
3. Create a complex password or use a website to generate one
If your primary goal is to use a password manager that is user-friendly, simple and convenient, Firefox’s password manager is definitely the right choice. In addition, the Firefox Password Manager uses strong local encryption, which puts it a step above other browser-based password managers.
The biggest problem we found with this password manager is, of course, the issues that arise for Android users. If you don’t use Android, you should have no issues syncing between devices with master password enabled.
In conclusion, if your password needs are not too advanced, Firefox’s Built-in Password Manager is definitely an option. If you’re geared more towards password managers that offer a variety of features, take a look at our best password managers page.