Separate password for Proton Pass
I don't use ProtonMail as my default mail service, therefore my Proton account is protected by a generated password that I can't and don't want to remember (using Bitwarden).
Having a way to use a completely different password than the one of my proton account to unlock Proton Pass will be a dealbreaker for me.
-
Paul H commented
I can see the difficulty in implementing this. You don't need to purchase mail to purchase vault. So everything is behind a Proton account. It's not behind your Mail account. Mail is just a service that uses your Proton account. Single Sign on would break with this too. It's hardly a giant security concern as virtually all security-minded companies have SSO. If they break your email, they can reset most service passwords anyway. So having a different one doesn't really matter. Just turn on 2FA. It's infinitely better for security.
-
User commented
I would say that the more important reason is to not have all your eggs in one basket. If Proton is your main email then it getting compromised would also mean your password manager being exposed. Just to not over rely on a single point of failure I would require at least different passwords. An independent TOTP for Proton Pass would be ideal.
-
Tim Z commented
This is exactly my situation.
-
Em commented
This is a pretty good point and partly why I will not move away from keepass. But it doesn't invalidate it as something I'd strongly recommend to my friends that would otherwise just use the same password for everything.
-
[Deleted User] commented
I use a password manager so that I won't have to remember my password to emails and such. Hence, using the same password for the manager and for the proton account defies the point.
Additionally, it is bad practice to have the same password for two online services -
AUser commented
This would be invaluable, I'm in a very similar situation. Lack of ability to sign into Proton Pass using a standalone set of credentials is blocking me from migrating from Bitwarden full time.
-
Y commented
Yep, would be great unlock our vaults with a password locally, so that even linked to our Proton account, we can use a proper password on ProtonPass.
I so agree with "ohoh" comment below. Too much concentration is not a good security way.
-
Y commented
Like on Bitwarden, let the user choosing for password unlock (rather than PIN) on web and smartphone versions.
Like on Bitwarden, allowing to create a master password, uncorrelated to the our Proton account credentials.
-
ohoh commented
But it absolutely makes sense from a security point of view.
If somebody gained access to your Proton account and there is no second barrier to your password vault, they would instantly own your complete digital footprint and they could lock you out of everything with no way for you to gain access again, since you wouldn't know your passwords and wouldn't have access to your email anymore.
I will not even switch away from Bitwarden, because I don't like the idea of such high concentration of my digital access methods.