Unlock through hardware / security key (e.g. yubikey)
In addition to unlock our vault through a 6 digit pin, it would be nice to be able to unlock it through physical security keys.
The current 6 digit cap as well as the divided input field (2x3 digits) make it impossible to utilize such a security key when configured to output a static password.
-
Carlos Eduardo commented
Could also use biometrics when available
-
[Deleted User] commented
Yeah, this should have already been added.
-
Ansel commented
The absence of this feature is the reason I'm still using KeePass and will not switch to proton pass. As others have written, this amount of security is in my opinion crucial for something thats so security critical
-
Geir Illing Nordvik commented
Unlocking with a security key and disabling logging in with a pin would be great.
I have the extension on my work computer, but this is a computer in a space where others can access the machine. Even though I lock it, it is still a security risk.
If the extension doesn't recognize my security key it should be locked until it is plugged in again. This would be a huge bump in security for me.
-
Niklas Gustafsson commented
Bitwarden, which also depends on e2e encryption allows you to login without username / password as long as the passkey authenticator supports PRF. It is clearly technically feasible to do. That said, it's not enough to support passkeys -- after enabling, I should be able to turn off my password entirely, as Microsoft Accounts (MSA) now support.
-
FBS commented
Given all the demands that there are on the development teams, I'd like to underline my support for this feature because a password manager clearly represents a ‘single point of security’ failure and it’s critical that access to it is secure. An external security key is therefore a critical component of its MFA. Thanks
-
César commented
As an architect/developer, It would be a powerful tool for my daily work, especially because i manage the infrastructure on cloud with IaC.
-
michael commented
strongbox allows to add yubikey not only for access but also uses it for encryption. I wish proton would support that
-
gk23vj5 commented
This is why I'm still using Bitwarden and not Proton Pass.
-
Shawn commented
We need support for Yubikeys for this unlock feature and we can setup how often we want the lock to occur before using the security key again.
-
Thomas Holz commented
Ohne die Nutzung des Yubikey´s oder eines hardwareschlüssels geht da garnichts das ist quasi die letzte instanz bevors heftig knallt
Passwortloses einloggen währe natürlich noch besser so das nur der Yubikey auf hardwarebasis möglich währe > wenn der flöten geht geht freischaltung ausschließlich über beglaubigten zugang von Dienststelle beispielsweise polizei mit beglaubigter lichtbildkopie.Apple braucht sogar 2 hardwarekeys was ich schon recht krass finde, wenn einer weg ist hätte man noch einen als " notfall" dieser könnte ja beispielsweise bei der bank liegen. Kostet zwar bisschen was aber ..... wenn der zugang zum pass erstmal da ist ist quasi feierabend. und das kostet wesentlich mehr
-
Shawn commented
It is utmost imperative that we have this feature to have the ability to lock and unlock our password database every single time using a security key and/or phone passkey!
-
Lost commented
Would be nice if we could use our full password instead of the 6 digit pin too
-
L4ne commented
Using ProtonPass on a laptop is not a good idea with only a 6 pin code, one of two Proton Pass has all my business passwords and to not have the option to login with security pin is very frustrating for me as Bitwarden allow it with few settings.. Hope they put this feature soon..
-
User Voice commented
Integrating physical security keys, e.g. yubikeys, would vastly increase security. The PIN is a no go for me and is the main reason preventing me from using Proton Pass. Security is only as strong as the weakest link, and currently the PIN is the weakest link to me.
-
TWOK commented
Any phone with FIDO2 compatible hardware (Google Pixel) for example, should be usable as a security key to unlock ProtonPass. If it's sufficient for unlocking the vault on the phone, it should accept handoff through windows hello.
-
Flowz commented
I agree that the 6 digit cap is not very secure, a security key like Yubikey login would be a great improvement.
-
referable755 commented
It would be great if Proton offered a competitor to the Yubikey in addition to supporting them.
-
Anonymous commented
+1
KeePassXC has this, though if this can be done without using any "slots" (like the HMAC challenge-response thing KeePassXC uses) that would be great.
-
[Deleted User] commented
One missing feature, that blocks me completely migrating my current password manager to Proton Pass.