LastPass is already doing a great job in generating unique passwords to avoid that compromised passwords are also allowing access to other sites as well. The same issue also holds true for potentially compromised email-addresses that have been used for logins for different services. If LastPass would offer a service that allows to dynamically generate email-addresses that can be used as logins would create an additional security layer in case a service has been hacked and user data have been compromised. This generated email-address needs to act as an email alias to the actual email address of the LastPass account to allow verify-email-adresses to come through. DuckDuckGo just added a similar service (see https://spreadprivacy.com/introducing-email-protection-beta/) but i think it would be an even better addition with the password generation capabilities of LastPass.
... View more
I use older systems like Equifax and TLO, and they have terrible password management. Probably the worst in the biz.
It would be really nice if LastPass offered the ability to generate a random password for a system like Equifax, and then provide that password to a user.
Personally, I think that there would be a ton of value in a b2b solution like this, because if more and more companies adopt it, the LastPass b2b user experience could be a common flow in the industry, similar to Google's OAuth.
This would allow older systems that rely on passwords to have a better system where they define the password requirements, but the user doesn't need to fulfill them themselves; rather LastPass would do that and handle the password coordination and merely informing the user what the new secure password is.
This could be a really good solution to allow b2b systems like Equifax and TLO to have a more consistent password-based UX, because as it stands I absolutely hate how every b2b solution in the world has its own proprietary password flow.
... View more