How to Set Up Google Password Manager’s On-Device Encryption for iOS, Chrome, and Android

How to Set Up Google Password Manager’s On-Device Encryption for iOS, Chrome, and Android

Eventually, Google and other big tech companies want to dispense with passwords entirely, but until that day comes, a Google Password Manager feature called on-device encryption might be your best bet for protecting your precious codes. Though it quietly came out earlier this spring, since you can now easily access Google Password Manager on your Android Home Screen, now’s a good time to go over it. The feature is available for Android, iOS, and Chrome, and is designed to help users keep their information safe from prying eyes — even Google’s.

What is on-device encryption?

In short: on device-encryption adds an extra layer of protection and privacy to Google Password Manager by giving you sole possession of the encryption key that encodes and decodes the text for your PWs.

When it comes to encryption, “keys” are the tool used to lock and unlock information. Encryption hides data by scrambling normal text, or “plaintext” into what is called “ciphertext,” which presents itself as garbled, unreadable gibberish. That gibberish can be turned back into readable plaintext, however, using a “key,” which is a randomly generated string of information that is used to unlock encryption.

Google Password Manager has traditionally held onto a user’s key, storing it in the user’s Google account and using it to protect their passwords. However, with on-device encryption, the user’s key is stored on their actual device instead of in Google’s digital systems. The feature allows users to unlock their passwords using their Google password or by using an eligible screen lock feature of their choosing (PIN or a fingerprint or other biometric identifier). As Google has put it, that means that “no one besides you will be able to access your passwords.” That includes Google!

Why You Should Set Up Account Recovery

You can certainly see the privacy advantages to this new feature, but there are some potential downsides too. For instance, if you lose or forget your Google password or other security mechanism tethered to the feature, you’re going to be in a world of hurt. Why? Because then you won’t be able to access any of your other passwords, either.

Because there is some risk of this happening, Google highly encourages you to set up some account recovery methods before enabling on-device encryption. You can read more about these by reading Google’s support page on the issue here. Also important to note: once on-device encryption is added, it apparently can’t be removed, so be sure you want to engage it before turning it on.

How to set up Google Password Manager’s On-Device Encryption

So how do you get this all set up? The process should be pretty simple. For Android, you just have to do the following:

  1. Open Password Manager.
  2. Click on Settings
  3. Tap Set up on-device encryption.

That should be it. For iOS, you’ll follow a similar procedure, but starting from the Google Passwords webpage. From there, just click on settings and then “set up.” For more information on this new feature, you can check out Google’s full write-up here.

Other options

Another thing to keep in mind is that you don’t necessarily have to trust Google at all! For the truly paranoid, this might not be a bad thing to consider. You can always subscribe to another password manager like Keeper or Bitwarden and, if that doesn’t suit your needs, you can always just go analogue and write your passwords down on a piece of paper. It’d be pretty hard to hack your notebook, after all.

The Cheapest NBN 50 Plans

It’s the most popular NBN speed in Australia for a reason. Here are the cheapest plans available.

At Gizmodo, we independently select and write about stuff we love and think you'll like too. We have affiliate and advertising partnerships, which means we may collect a share of sales or other compensation from the links on this page. BTW – prices are accurate and items in stock at the time of posting.