Task Capture with Siri & OmniFocus

November 10, 2015 • #

I’ve talked before about the concept of “ubiquitous capture” and how achieving a system where you never lose an item is an ideal for a seamless GTD setup. No matter what task management tool you use of the hundreds of options, both automatic or analog, there are still moments when a fleeting piece of info we want to remember — either something new to do or an idea or breakthrough on an existing project task — slips through the cracks. The best system for managing all of your collective “stuff” is any that you trust to be the go-to place for all the things that require your attention.

In any GTD-esque system, the two core concepts are capture and review:

  1. Capture anything on your mind so it lives in a system, not in your head.
  2. Review your “inbox” on some repeated schedule to process things into the right place, grouping things by project, adding deadlines, or filing into contexts.

When I got started building my personal workflow, I found the biggest initial hurdle was a reliable mechanism for getting things into my inbox as quickly and readily as possible. I’ve tried notebooks, cards, text files, and most digital task apps to try and find a single tool that works, but there was always friction and things would get forgotten. My short term memory is horrendous, and most things needing to find their way into my inbox would occur to me while getting ready in the morning or while driving or biking to work.

Enter Siri

True ubiquitous capture is achieved by using whatever tools are most reliably available to you, and for me that’s OmniFocus and my iPhone. OmniFocus 2 for iOS added a built-in Reminders capture feature to pull things added to a specific list over into the OF inbox. Then using the “Siri, add this to my list…” command when dictating gives you hands-free, fast access to append items to the inbox. I say things like:

  • “Add assemble new furniture to my inbox list”
  • “Add get flu shot to my inbox list”
  • “Remind me to take out the trash when I get home” (using location-aware contexts in OF)

With Siri set up this way, I now have a wider funnel for capturing anything I’m thinking about anywhere I’ve got my phone. So even when I’m in the car or working in the garage and some random item pops into my head, I can make sure it doesn’t slip through. It’ll be there waiting in my inbox for the next review when I’m processing my workload.

Touch ID and Security

September 17, 2015 • #

I recently wrote a review on the Fulcrum blog for one of my favorite pieces of software, 1Password. It’s a password management app to help you keep better organized with your hundreds of passwords, codes, and secure data that you typically have laying around in emails, documents, and post-it notes on your desk1.

I’m a heavy user of 1Password on my iPhone to look up accounts while I’m mobile. Because 1Password vault security is only as secure as your master password, the natural tendency is to have a long, complex, intricate passphrase to type to unlock the vault. And from the iPhone, you want your vault to re-lock pretty rapidly so the door to your digital safe isn’t left swinging open while your phone’s sitting on the table. The net result is having to constantly type a hard-to-type passphrase on a hard-to-type-on device. No good and no fun.

Touch ID

My problems were solved a few weeks ago I finally enabled the Touch ID functionality in 1Password 5 for accessing your vault using your fingerprint, versus typing the 30-character password2. After using it like this for a few days, it seemed less secure to me, since it wasn’t even requiring my impressively-complicated password to get in. I dug into some of the documentation to find out how secure the implementation of Touch ID authorization is in 1Password, and how Touch ID works in iOS.

The app documentation has a great article outlining exactly how Touch ID works within 1Password. For a long time it had a “PIN Code” feature to have a quick access code for unlocking the vault after you had recently unlocked the vault with your master password, and the Touch ID feature works similarly. The data is still encrypted with the master password. It’s designed explicitly as a mechanism for adding convenience to the process, which is a critical component to maintaining good security best practices:

“Just as Apple has designed Touch ID not as a replacement for a device passcode, we do not use Touch ID in 1Password as a replacement for your Master Password. Touch ID is a convenience mechanism that provides a way to quickly unlock 1Password after there has been a full unlock (with your Master Password).”

The intersection of convenience and security is interesting. They’re fundamentally opposite: a totally secure system is extremely inconvenient to access, a convenient one is insecure. The best systems strike a balance somewhere in the center. The problem with highly secure but inconvenient systems is that they entice users to defuse the security of the whole system by taking shortcuts. Think of the corporate IT environment with all the bells and whistles on security—password strength requirements, required resets every month, can’t reuse passwords, minimum lengths—it’s this massive inconvenience that results in the post-it note on the monitor with the keys to the kingdom written on it.

The security of how Touch ID’s technology works is another matter, one of hardware and storage. With the release of the A7 processor in 2013, Apple introduced something called the Secure Enclave3, which allows applications to store bits completely outside the scope of the kernel on a physically isolated area of the chip. This is where biometrics get stored, along with cryptographic data for other applications. Apple’s technical documentation about Touch ID security covers in minute detail exactly how iOS devices store your fingerprint data on the Secure Enclave, and the ultimate reason why Touch ID is actually more secure than not using it:

“Since security is only as secure as its weakest point, you can choose to increase the security of a 4-digit passcode by using a complex alphanumeric passcode. To do this, go to Settings > Touch ID & Passcode and turn Simple Passcode off. This will allow you to create a longer, more complex passcode that is inherently more secure.”

This is a key point that’s relevant at the OS level and within apps like 1Password or banking apps using biometrics. If, because of the convenience factor, biometrics enable people to keep their encryption passphrases more secure at the core, then we’re all better off.

  1. It’s utterly essential to modern computing, so go buy it right now if you don’t have it already.

  2. The Agile Bits team released this functionality a year ago, but for some reason I never bothered to try it.

  3. Apple has an in-depth security document covering Secure Enclave and the entire security architecture of iOS and the hardware. Worth a read if you can stomach the geeky stuff.