Accounts & payments
131 results found
-
Expert mode for security/recovery
I love Proton and rely on it for email and password management. This makes my Proton account's security paramount, since this is the gateway to everything else now. That is why I have two security keys that protect access to this critically important account with unfishable 2FA. My password is kept offline, and is backed-up in various ways.
Proton, however, seems to work against my efforts sometimes. I'm obligated to also use an authenticator app to use my security keys. Without asking, I'm suddenly opted-in to having recovery files downloaded to my trusted devices. Allow password reset from settings is…
27 votes -
Integrate Proton Voice inside of Proton Apps
Make it easier to vote and suggest on Proton Voice ideas from the apps, so that we don't have to open another tab, wait for login and only then be able to check if there's any suggestion similar to mine (all this context switching makes me forget what I was trying to suggest)
4 votes -
Let the users delete the contact keys
Please consider to let the users delete the contact keys which are not used anymore (or have been created but never used) from the list of the availabe one, same as already allowed for the PGP keys which can be imported/exported/deleted.
4 votes -
Make it possible to add a custom name to Sessions in the Security & Privacy Dashboard
Basically, as the title says, being able to add a custom name to each session, for better organization and overview.
e.G.
Proton Pass for iOS: "Andreas iPhone 12 Pro"7 votes -
Recover email by two methods
If some get access to my recovery email ,he will be able easily to change the password, please make the email recovery with two or 3 methods ..for example( recovery email+Phone recovery)or (phone recovery +Seed phrase)and for security if the network changed ask for the three options
2 votes -
Offline "backup" codes
Similar or exactly how Google provides 10 Backup Codes for 2FA. It would be incredibly helpful to use Proton Services while on a customer site, or at a location where personal devices are disallowed.
2 votes -
Add FIDO2 Support (Not U2F)
I see lots of requests about FIDO2, but there appears to be some confusion between FIDO/U2F and FIDO2.
Implementing true passwordless FIDO2 support for ProtonPass would greatly enhance its appeal. Ideally, this feature should be consistent across the entire Proton ecosystem.
With the general availability of mobile OTP, why even bother buying a physical security key if FIDO2 isn't going to be supported?
2 votes -
Log in to Proton Account with FIDO2 / WebAuthn ( Passkeys / Passwordless )
With the rise in account takeover, password breaches, and the complexity of managing hundreds if not thousands of account credentials and their MFA, a better solution is needed that simplifies and offer bullet-proof protection against phishing and account takeover attacks.
Many services like 1Password, Yubico/Yubikey, and Apple offer the ability to generate and securely store passkeys that can then be used to authenticate to services that support WebAuthn/FIDO2. I strongly recommend that ProtonMail, ProtonVPN, ProtonDrive, ProtonCalendar, etc. to support passwordless/passkeys in the near future to stay on top of security and ensure that its customers are properly protecting their accounts.
…
257 votes -
Forgotten password options vulnerability
I clicked the "forgot password" option on the sign in page to test. After entering my email, it immediately prompted for a 12 word phrase.
Immediately prompting for the phrase gives an attacker performing reconnaissance valuable information.
All 3 options should be selectable regardless of which have been configured. This allows security through obfuscation. As the screenshots in this link show https://proton.me/support/reset-password
This is for a situation where someone who knows my alternate email or phone number and tries to use them. If I haven't enabled them as options, it would be also good to then get a notification about…
23 votes -
Chat feature between protonmail accounts
Would love to see a chat/messaging feature between protonmail accounts a la gmail or yahoo. For individuals who work in environments where cell usage is not available, messaging features are important communication devices for families.
1 vote -
Merge proton accounts
I tried Proton Mail free before buying a subscription and am so disappointed I can't use the paid features on these accounts. I am allowed more than one account with my subscription. Why can't it be the ones I already have and use? Such a pain to have to switch over between
13 votes -
Scoped account logins/workspaces
For context, I am someone who works in a high security field where I am not allowed to have my personal phone on me depending on the area I am working in that day and only authorized to carry my work provided phone. On this work phone I am allowed to install personal apps in the personal android profile however everything is monitored. I would like a proton account management feature where you can set multiple passwords for your account that are associated with a different scope of access. For example entering the main password gives full access to account…
1 vote -
security practice or training in a safe environment
Proton has a security review page which is great. https://account.proton.me/u/0/pass/recovery
A feature allowing people to practice recovering an account in a safe space is appreciated. Then I can feel more comfortable with the process without harming my existing account.
Perhaps this could be part of an education / setup / review / training system.
1 vote -
default 2fa setting
Allow the user to set the default 2fa, with the effect that the default 2FA is displayed first. I use 1Password password manager. For Proton, I use both a security key and an authenticator. Proton insists on prompting for a security key and showing authenticator as an alternative. I almost never use the security key; it is my backup. But this behavior by Proton, prompting for the security key, prevents my password manager from getting me logged all of the way in automatically.
I currently have to click the authenticator tab. When I do that, my password manager takes over…
1 vote -
Unlicenced Admin Account
Best practice is to have a separated dedicated unlicensed Admin account.
I do not like that my regular account also has Admin access, and would like to setup a separate account for this, however I would have to pay for an additional license.12 votes -
Customer service phone number h
I need a contact phone number for anyone at proton its imperative I speak to a human being not a machine
1 vote -
Reactivate an account that had been deactivated due to inactivity
I signed up for ProtonMail a while ago, but I never got around to using it. Now I want to use that email address for a subscription account. How can I reactivate it?
1 vote -
Option to check Security Phrase
Right now we can only generate new Recovery Phrase.
It would be very helpful to have an option to check the Recovery Phrase.This way we will be able to check if the noted phrase is saved correctly, and we can also check the phrase from time to time without having to reset it and backup it again.
1 vote -
1 vote
-
Be able to hide user name and email from ios/android app
Be able to hide user name and email from ios/android app
1 vote
- Don't see your idea?