Skip to content

How can we improve Proton Pass or Authenticator?

← Proton Pass & Authenticator

Optional unlock-before-autofill security model for browser extension

Proton Pass currently follows a browser-trust security model: once the browser session is unlocked, autofill is allowed without additional user authentication.

For users who keep their browser open for long periods or occasionally share devices, this effectively means the password manager is also unlocked. The existing PIN protects access to the Proton Pass UI, but does not gate
autofill itself, so credentials can still be filled without explicit authentication.

I would like to suggest offering an optional vault-style security model, where autofill requires explicit user authentication (password or biometrics), and optionally auto-locks after inactivity independent of browser state.

This would significantly improve security for shared-device and security-focused workflows, while remaining optional for users who prefer frictionless autofill.

5 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Flix shared this idea  ·   ·  Report…  ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • borble commented  ·   ·  Report

    I agree wholeheartedly with this suggestion. I currently don’t have autofill enabled on any of my devices where I use Proton Pass (whether in a browser or a mobile app) because I don’t feel comfortable without such an added layer of security. This sort of feature is on by default in other password managers, like 1Password, requiring authentication before each instance of autofill.

Proton Pass & Authenticator: New feature

Categories