Unlock through hardware / security key (e.g. yubikey)
In addition to unlock our vault through a 6 digit pin, it would be nice to be able to unlock it through physical security keys.
The current 6 digit cap as well as the divided input field (2x3 digits) make it impossible to utilize such a security key when configured to output a static password.
-
danieldddddd commented
Yubikey support please, on browser, desktop, and mobile.
-
datavectors commented
As a startup Proton user I am just starting to browse these user opinions. I write as a developer who started up one of the first biometric systems in U.K. based on dynamic signatures back in the '80s.
Today as an octogenarian developer I value the simplicity of using Google Titan Key to login to accounts such as Heroku. Simples!
Consider the hassle if your 2FA mobile is not available to receive. I abhor idea of facial recognition (I resemble the old Gabby Hayes of vintage westerns). One Logitech webcam I bought to appease some accounts verifying my identity only works on Windows not Ubuntu. It only works when I dual boot from Ubuntu into Windows.
User memory of phrases or images combined with security dongle is a good compromise to complement passwords. There is too much hassle today in managing many, many subscribed accounts. And has anybody considered a "dead man's handle" process for non technical executors (not familiar with Proton) to apply when Proton account owner falls under a bus? How to verify identity of legal executor to wind down an array of active accounts? A backup Google Titan Key (held by executor) makes this succession task easier in my view.And incidently why stick an X post alongside this comment field? I am not interested in Musk land. Then I spotted "Post comment" further down. First time fumbling around I guess.
-
Thomas Senn commented
I’m disapointed not to be able to use yubikey as the primary login.
-
Carlos Eduardo commented
Could also use biometrics when available
-
[Deleted User] commented
Yeah, this should have already been added.
-
Ansel commented
The absence of this feature is the reason I'm still using KeePass and will not switch to proton pass. As others have written, this amount of security is in my opinion crucial for something thats so security critical
-
Geir Illing Nordvik commented
Unlocking with a security key and disabling logging in with a pin would be great.
I have the extension on my work computer, but this is a computer in a space where others can access the machine. Even though I lock it, it is still a security risk.
If the extension doesn't recognize my security key it should be locked until it is plugged in again. This would be a huge bump in security for me.
-
Niklas Gustafsson commented
Bitwarden, which also depends on e2e encryption allows you to login without username / password as long as the passkey authenticator supports PRF. It is clearly technically feasible to do. That said, it's not enough to support passkeys -- after enabling, I should be able to turn off my password entirely, as Microsoft Accounts (MSA) now support.
-
FBS commented
Given all the demands that there are on the development teams, I'd like to underline my support for this feature because a password manager clearly represents a ‘single point of security’ failure and it’s critical that access to it is secure. An external security key is therefore a critical component of its MFA. Thanks
-
César commented
As an architect/developer, It would be a powerful tool for my daily work, especially because i manage the infrastructure on cloud with IaC.
-
michael commented
strongbox allows to add yubikey not only for access but also uses it for encryption. I wish proton would support that
-
gk23vj5 commented
This is why I'm still using Bitwarden and not Proton Pass.
-
Shawn commented
We need support for Yubikeys for this unlock feature and we can setup how often we want the lock to occur before using the security key again.
-
Thomas Holz commented
Ohne die Nutzung des Yubikey´s oder eines hardwareschlüssels geht da garnichts das ist quasi die letzte instanz bevors heftig knallt
Passwortloses einloggen währe natürlich noch besser so das nur der Yubikey auf hardwarebasis möglich währe > wenn der flöten geht geht freischaltung ausschließlich über beglaubigten zugang von Dienststelle beispielsweise polizei mit beglaubigter lichtbildkopie.Apple braucht sogar 2 hardwarekeys was ich schon recht krass finde, wenn einer weg ist hätte man noch einen als " notfall" dieser könnte ja beispielsweise bei der bank liegen. Kostet zwar bisschen was aber ..... wenn der zugang zum pass erstmal da ist ist quasi feierabend. und das kostet wesentlich mehr
-
Shawn commented
It is utmost imperative that we have this feature to have the ability to lock and unlock our password database every single time using a security key and/or phone passkey!
-
Lost commented
Would be nice if we could use our full password instead of the 6 digit pin too
-
L4ne commented
Using ProtonPass on a laptop is not a good idea with only a 6 pin code, one of two Proton Pass has all my business passwords and to not have the option to login with security pin is very frustrating for me as Bitwarden allow it with few settings.. Hope they put this feature soon..
-
User Voice commented
Integrating physical security keys, e.g. yubikeys, would vastly increase security. The PIN is a no go for me and is the main reason preventing me from using Proton Pass. Security is only as strong as the weakest link, and currently the PIN is the weakest link to me.
-
TWOK commented
Any phone with FIDO2 compatible hardware (Google Pixel) for example, should be usable as a security key to unlock ProtonPass. If it's sufficient for unlocking the vault on the phone, it should accept handoff through windows hello.
-
Flowz commented
I agree that the 6 digit cap is not very secure, a security key like Yubikey login would be a great improvement.