Use Security Key without Authenticator App
I would like to additionally secure my account with a security key only, not with a 2FA authenticator app.
-
Niklas Gustafsson
commented
Bitwarden, which also depends on e2e encryption allows you to login without username / password as long as the passkey authenticator supports PRF. It is clearly technically feasible to do. That said, it's not enough to support passkeys -- after enabling, I should be able to turn off my password entirely, as Microsoft Accounts (MSA) now support.
-
FBS
commented
Given all the demands that there are on the development teams, I'd like to underline my support for this feature because a password manager clearly represents a ‘single point of security’ failure and it’s critical that access to it is secure. An external security key is therefore a critical component of its MFA. Thanks
-
César
commented
As an architect/developer, It would be a powerful tool for my daily work, especially because i manage the infrastructure on cloud with IaC.
-
michael
commented
strongbox allows to add yubikey not only for access but also uses it for encryption. I wish proton would support that
-
gk23vj5
commented
This is why I'm still using Bitwarden and not Proton Pass.
-
Shawn
commented
We need support for Yubikeys for this unlock feature and we can setup how often we want the lock to occur before using the security key again.
-
Thomas Holz commented
Ohne die Nutzung des Yubikey´s oder eines hardwareschlüssels geht da garnichts das ist quasi die letzte instanz bevors heftig knallt
Passwortloses einloggen währe natürlich noch besser so das nur der Yubikey auf hardwarebasis möglich währe > wenn der flöten geht geht freischaltung ausschließlich über beglaubigten zugang von Dienststelle beispielsweise polizei mit beglaubigter lichtbildkopie.Apple braucht sogar 2 hardwarekeys was ich schon recht krass finde, wenn einer weg ist hätte man noch einen als " notfall" dieser könnte ja beispielsweise bei der bank liegen. Kostet zwar bisschen was aber ..... wenn der zugang zum pass erstmal da ist ist quasi feierabend. und das kostet wesentlich mehr
-
Shawn
commented
It is utmost imperative that we have this feature to have the ability to lock and unlock our password database every single time using a security key and/or phone passkey!
-
Lost
commented
Would be nice if we could use our full password instead of the 6 digit pin too
-
L4ne
commented
Using ProtonPass on a laptop is not a good idea with only a 6 pin code, one of two Proton Pass has all my business passwords and to not have the option to login with security pin is very frustrating for me as Bitwarden allow it with few settings.. Hope they put this feature soon..
-
User Voice
commented
Integrating physical security keys, e.g. yubikeys, would vastly increase security. The PIN is a no go for me and is the main reason preventing me from using Proton Pass. Security is only as strong as the weakest link, and currently the PIN is the weakest link to me.
-
TWOK commented
Any phone with FIDO2 compatible hardware (Google Pixel) for example, should be usable as a security key to unlock ProtonPass. If it's sufficient for unlocking the vault on the phone, it should accept handoff through windows hello.
-
Flowz
commented
I agree that the 6 digit cap is not very secure, a security key like Yubikey login would be a great improvement.
-
referable755
commented
It would be great if Proton offered a competitor to the Yubikey in addition to supporting them.
-
Anonymous
commented
+1
KeePassXC has this, though if this can be done without using any "slots" (like the HMAC challenge-response thing KeePassXC uses) that would be great.
-
[Deleted User]
commented
One missing feature, that blocks me completely migrating my current password manager to Proton Pass.
-
A Doug
commented
+1
Would be great if unlocking could be done with FIDO2 compliant security keys. This could help combat the circular dependency of needing to log into your password vault, but the password to the vault is secured in the vault...
-
Kafor
commented
Essential for safety
-
n_m
commented
First of all it would be great to have the option to only unlock the vault with a security key e.g. YubiKey or the back-up code on the desktop/web app + browser extension.
Additionally I would love it if it stays open as long the security key is plugged in to the device. It should only lock when the security key is been removed.
-
[Deleted User]
commented
+1