Lock desktop app
It would be interesting to be able to lock the Proton Mail Windows application with a security code like the Proton Pass application, both manually and after a certain time, so that you do not have to constantly log out and log in
-
Luis commented
Does anyone know if there's any progress with this request?
-
Jake commented
Also looking for a pin unlock feature for Linux desktop. There is a pin unlock feature in the Proton Pass extension for my browser... so how come there isn't one for desktop to keep logged in?
-
Ale commented
I would also add unlock feature to macOS desktop applications, like Proton Mail using the existing fingerprint functionality.
All MacBooks include biometric functionalities; it would be a great addition to have that.
-
Swiddy commented
Critical feature. Laptop is used by more familymembers and I don not want (kids) to give access to my mail. I can live with the that risk but worse is that the mail client gives access to absolutely all settings for the complete Proton account.
-
Luis commented
The ability to lock an encrypted email application is critical. I shouldn't have to logout of the app to know my email is safe.
-
Alien Bob commented
Having an option to require a PIN anytime you open the ProtonMail Desktop App or after a certain period of inactivity is crucial for enhancing the security and privacy of user accounts. Here are several reasons why this feature would be beneficial:
Enhanced Security: Requiring a PIN adds an additional layer of security beyond just logging into the app. Even if someone gains physical access to your computer or if it is left unattended, they cannot access your emails without the PIN. This helps protect sensitive information from unauthorized access.
Privacy Protection: PIN protection ensures that your emails remain private even if someone briefly gains access to your computer. It prevents casual snooping and maintains confidentiality, especially important if you work in shared spaces or have sensitive correspondence.
Compliance and Regulation: In certain industries or professions, there are regulatory requirements for securing email communications. PIN protection can help meet these standards by ensuring that unauthorized individuals cannot easily access sensitive information.
Convenience with Security: While strong passwords are essential, they can sometimes be cumbersome to enter frequently throughout the day. A PIN requirement strikes a balance between security and usability, offering a quicker way to protect your account while maintaining accessibility.
Preventing Unauthorized Access: Users may inadvertently leave their desktops unlocked or unattended, especially in busy environments. A PIN requirement mitigates the risk of someone else accessing your emails during these moments of vulnerability.
User Control and Customization: Providing the option to enable or disable PIN protection gives users control over their security preferences. Some users may prefer the convenience of instant access while others prioritize heightened security.
Adapting to Desktop Usage Patterns: Desktop environments often involve longer sessions compared to mobile usage. Requiring a PIN after a period of inactivity aligns with typical desktop usage patterns and ensures ongoing protection without unnecessary interruptions during active sessions.
In conclusion, implementing an option for PIN protection in the Proton Mail Desktop App would significantly enhance security, privacy, and compliance for users. It provides a flexible yet effective means to safeguard sensitive information and maintain control over access to email accounts, especially in diverse and dynamic usage scenarios.
-
Anonymous commented
The lack of app locking and presumably local encryption is the sole reason I do not use the desktop mail app; I use Proton Mail exclusively in my browser, which I have set to clear all browsing data on exit. I don't like the idea of having my email account unlocked all the time. I would love to see local encryption implemented for the desktop mail app.
-
Anon commented
Lock with Security key would be great. Just touching my biometric key every time would be a great compromise between safety and time saving.
-
J-McD commented
A timed lock could also solve one of my real dislikes of the Proton Mail app (Windows).
If you close the app without logging out it can be opened again without a password. This behaviour still exists if you shutdown the laptop/PC. When the laptop/PC starts up again you still don't require a password to open the Proton mail app.
On a corporate desktop this would be unacceptable for security reasons.
-
Bernard Geisler commented
All Proton apps (especially Proton Mail) should should have a pin option with a user set timeout. If pin tries fail several times then require a full user id and password to get back into the app. When the pin timeout expires then require a pin re-submittal.
Very convenient, as Proton Pass is now.
-
Vincent commented
Just like Thunderbird, there needs to be a passcode lock to add extra security layer.
-
Anonymous commented
Besides using a PIN, it would be nice to unlock with biometrics as well.
-
Paul M commented
So I've looked at what has been said here. I agree should have it work like the Android app where I can set a pin. Maybe since I'm on Linux, my reason for wanting it a little different. For me the app just stays logged in and just loads up every time I open it. Convenient, yes, but there needs to be a lock for security reasons. I don't even care if it reprompts for the mailbox encryption key.
-
James commented
I just don't understand why an encrypted email service would be defaulted to auto load with no password request?? Getting in to windows is easy, so why not adopt the same thinking as phones? Even if it was a text or auth app at login, I'd rather have the choice of having that additional inconvenience for my own peace of mind. If this doesn't change, I will have to have my emails diverted to some other service, Criptext has this, and it works perfectly. 4 number pin.
-
Anonymous commented
I'd like to chime in and say ALL Proton apps -- desktop or mobile or whatever -- should ideally support a separate PIN. Maybe even support for a duress PIN.
-
ProtonUser commented
It's not silly. Whilst yes it's true that a keylogger/screenshot spyware is still a risk, it's all about limiting risks. Additional if the app locks the idea should be that it's encrypted in memory making it so that even if windows is locked or another user is logged in they're unable to dump the memory (technically they're still able to dump the memory but it's encrypted data so it's next to worthless, ofc assuming the encryption is safe and doesn't leak the key). (Or when your device is stolen and not shut down).
And arguing that if someone has installed spyware on your unlocked system is a void argument as it would apply to everything even the web app and your bank account, those also lock after a certain amount of time. And whilst information leakage is still at risk here it does prevent the risk of someone using your account in your name. Even protects it against autockickers and hand-on-keyboard activity
-
JD commented
If someone other than you has access to your unlocked Windows session you are doomed anyway. They can user-install (no admin) something that takes a screenshot every 5 seconds and posts it somewhere.
This suggestion is very silly. Windows is not a mobile OS, once the session is unlocked everything is fair game.
-
Anonymous commented
I use a shared computer, and I don't want to have to enter my full Proton account details and password every time I open it. I want to have an app-specific password or PIN that I can set to open the app.
-
Fr6d6ric commented
Please enable a protonmail desktop time autolock (like in proton pass). It's a security concern to me that my proton mailbox is accessible on my computer if I forget to sign out when leaving the app.
-
ProtonUser commented
Why not have it locked (and thus also encrypted) but to unlock you can use your MFA token/pin/... to unlock it, similar to how you would normally login to the web app?
Ofc, this does also mean that your password (and to a lesser degree your email address) would also be encrypted and not be stored somewhere in clear text on the system.