We need support for Yubikeys for this unlock feature and we can setup how often we want the lock to occur before using the security key again.

Ohne die Nutzung des Yubikey´s oder eines hardwareschlüssels geht da garnichts das ist quasi die letzte instanz bevors heftig knallt
Passwortloses einloggen währe natürlich noch besser so das nur der Yubikey auf hardwarebasis möglich währe > wenn der flöten geht geht freischaltung ausschließlich über beglaubigten zugang von Dienststelle beispielsweise polizei mit beglaubigter lichtbildkopie.

Apple braucht sogar 2 hardwarekeys was ich schon recht krass finde, wenn einer weg ist hätte man noch einen als " notfall" dieser könnte ja beispielsweise bei der bank liegen. Kostet zwar bisschen was aber ..... wenn der zugang zum pass erstmal da ist ist quasi feierabend. und das kostet wesentlich mehr

It is utmost imperative that we have this feature to have the ability to lock and unlock our password database every single time using a security key and/or phone passkey!

Would be nice if we could use our full password instead of the 6 digit pin too

Using ProtonPass on a laptop is not a good idea with only a 6 pin code, one of two Proton Pass has all my business passwords and to not have the option to login with security pin is very frustrating for me as Bitwarden allow it with few settings.. Hope they put this feature soon..

Integrating physical security keys, e.g. yubikeys, would vastly increase security. The PIN is a no go for me and is the main reason preventing me from using Proton Pass. Security is only as strong as the weakest link, and currently the PIN is the weakest link to me.

Any phone with FIDO2 compatible hardware (Google Pixel) for example, should be usable as a security key to unlock ProtonPass. If it's sufficient for unlocking the vault on the phone, it should accept handoff through windows hello.

I agree that the 6 digit cap is not very secure, a security key like Yubikey login would be a great improvement.

It would be great if Proton offered a competitor to the Yubikey in addition to supporting them.

+1

KeePassXC has this, though if this can be done without using any "slots" (like the HMAC challenge-response thing KeePassXC uses) that would be great.

One missing feature, that blocks me completely migrating my current password manager to Proton Pass.

+1

Would be great if unlocking could be done with FIDO2 compliant security keys. This could help combat the circular dependency of needing to log into your password vault, but the password to the vault is secured in the vault...

Essential for safety

First of all it would be great to have the option to only unlock the vault with a security key e.g. YubiKey or the back-up code on the desktop/web app + browser extension.

Additionally I would love it if it stays open as long the security key is plugged in to the device. It should only lock when the security key is been removed.

+1

I literally made a "uservoice" acc just to ask/propose a fix to this
How can it be that the password manager stays unlocked in my browser?!
A pin doesn't give me enough peace of mind for protecting my password manager! that's nuts, nowadays our lives are basically stored in there
atm my mane is still 1Password (fingerprint on smartphone and ipad, still scared of keyloggers on laptop), would like to make a full switch, but don't like to always tipe the code in, for convenience but especially for security reasons!
please resolve asap thanks

The first time I opened the extension after a system reboot I nearly had a heart attack that somehow I was still completely logged in. Please let us unlock it with a physical key!

Can we please have an option to not have to use only a "Master Password" to encrypt/decrypt our Vaults and instead use a security key like Yubikey in combination with a Password or PIN?

To be clear, I'm not talking about the security key being used in static password mode which basically acts as a HID and can also be compromised using a keylogger, but a real FIDO2 or GPG challenge instead.

A real world example that is technically possible right now:
Your companies IT department for example can remote into your machine, log the password by installing a keylogger and unlock the Vault on the same machine when you're away. This leads to all your passwords being compromised.

Thanks in advance!

Yes - just a PIN to unlock the browser extensions is too unsecure! Physical security key or with OTP is very important.

Please, add passkeys support with mandatory PIN! Urgent!!!! Detach everything from Proton Mail as well