12 KiB
title, description
| title | description |
|---|---|
| Password Managers | Password managers allow you to securely store and manage passwords and other credentials. |
Protects against the following threat(s): {{< badge content="Targeted Attacks" color="red" >}} {{< badge content="Passive Attacks" color="amber" >}} {{< badge content="Service Providers" color="indigo" >}}
Password managers allow you to securely store and manage passwords and other credentials with the use of a master password.
Important
Built-in password managers in software like browsers and operating systems are sometimes not as good as dedicated password manager software. The advantage of a built-in password manager is good integration with the software, but it can often be very simple and lack privacy and security features that standalone offerings have.
For example, the password manager in Microsoft Edge doesn't offer end-to-end encryption at all. Google's password manager has optional E2EE, and Apple's offers E2EE by default.
Cloud-based
These password managers sync your passwords to a cloud server for easy accessibility from all your devices and safety against device loss.
Bitwarden
Bitwarden is a free and open-source password and passkey manager. It aims to solve password management problems for individuals, teams, and business organizations. Bitwarden is among the best and safest solutions to store all of your logins and passwords while conveniently keeping them synced between all of your devices.
{{< cards >}} {{< card link="https://bitwarden.com" title="Homepage" icon="home" >}} {{< card link="https://bitwarden.com/privacy" title="Privacy Policy" icon="eye" >}} {{< /cards >}}
{{< badge content="Linux" color="yellow" >}} {{< badge content="macOS" color="indigo" >}} {{< badge content="Windows" color="red" >}} {{< badge content="Google Play" color="green" >}} {{< badge content="App Store" color="blue" >}} {{< badge content="Chrome" >}} {{< badge content="Edge" >}} {{< badge content="Firefox" >}} {{< badge content="Flathub" >}} {{< badge content="GitHub" >}} {{< badge content="Safari" >}}
Bitwarden uses PBKDF2 as its key derivation function (KDF) algorithm by default. It also offers Argon2, which is more secure, as an alternative. You can change your account's KDF algorithm in the web vault:
- Select Settings → Security → Keys → KDF algorithm → Argon2id
Bitwarden's server-side code is open source, so if you don't want to use the Bitwarden cloud, you can easily host your own Bitwarden sync server.
Proton Pass
Proton Pass is an open-source, end-to-end encrypted password manager developed by Proton, the team behind Proton Mail. It securely stores your login credentials, generates unique email aliases, and supports and stores passkeys.
{{< cards >}} {{< card link="https://proton.me/pass" title="Homepage" icon="home" >}} {{< card link="https://proton.me/pass/privacy-policy" title="Privacy Policy" icon="eye" >}} {{< /cards >}}
{{< badge content="Windows" color="red" >}} {{< badge content="Google Play" color="green" >}} {{< badge content="App Store" color="blue" >}} {{< badge content="Chrome" >}} {{< badge content="Edge" >}} {{< badge content="Firefox" >}} {{< badge content="Web" >}}
With the acquisition of SimpleLogin in April 2022, Proton has offered a "hide-my-email" feature that lets you create 10 aliases (free plan) or unlimited aliases (paid plans).
The Proton Pass mobile apps and browser extension underwent an audit performed by Cure53 throughout May and June 2023. The security analysis company concluded:
Proton Pass apps and components leave a rather positive impression in terms of security.
All issues were addressed and fixed shortly after the report.
1Password
1Password is a password manager with a strong focus on security and ease-of-use that allows you to store passwords, passkeys, credit cards, software licenses, and any other sensitive information in a secure digital vault. Your vault is hosted on 1Password's servers for a monthly fee.
1Password is audited on a regular basis and provides exceptional customer support. 1Password is closed source; however, the security of the product is thoroughly documented in their security white paper.
{{< cards >}} {{< card link="https://1password.com" title="Homepage" icon="home" >}} {{< card link="https://1password.com/legal/privacy" title="Privacy Policy" icon="eye" >}} {{< /cards >}}
{{< badge content="Linux" color="yellow" >}} {{< badge content="macOS" color="indigo" >}} {{< badge content="Windows" color="red" >}} {{< badge content="Google Play" color="green" >}} {{< badge content="App Store" color="blue" >}} {{< badge content="Chrome" >}} {{< badge content="Edge" >}} {{< badge content="Firefox" >}} {{< badge content="Safari" >}} {{< badge content="Web" >}}
Traditionally, 1Password has offered the best password manager user experience for people using macOS and iOS; however, it has now achieved feature parity across all platforms. 1Password's clients boast many features geared towards families and less technical people, such as an intuitive UI for ease-of-use and navigation, as well as advanced functionality. Notably, nearly every feature of 1Password is available within its native mobile or desktop clients.
Your 1Password vault is secured with both your master password and a randomized 34-character security key to encrypt your data on their servers. This security key adds a layer of protection to your data because your data is secured with high entropy regardless of your master password. Many other password manager solutions are entirely reliant on the strength of your master password to secure your data.
Psono
Psono is a free and open-source password manager from Germany, with a focus on password management for teams. Psono supports secure sharing of passwords, files, bookmarks, and emails. All secrets are protected by a master password.
{{< cards >}} {{< card link="https://psono.com" title="Homepage" icon="home" >}} {{< card link="https://psono.com/privacy-policy" title="Privacy Policy" icon="eye" >}} {{< /cards >}}
{{< badge content="Google Play" color="green" >}} {{< badge content="App Store" color="blue" >}} {{< badge content="Chrome" >}} {{< badge content="Docker Hub" >}} {{< badge content="Firefox" >}}
Psono provides extensive documentation for their product. The web-client for Psono can be self-hosted; alternatively, you can choose the full Community Edition or the Enterprise Edition with additional features.
In April 2024, Psono added support for passkeys for the browser extension only.
Criteria
Please note we are not affiliated with any of the projects we recommend. In addition to our standard criteria, we have developed a clear set of requirements to allow us to provide objective recommendations. We suggest you familiarize yourself with this list before choosing to use a project, and conduct your own research to ensure it's the right choice for you.
Minimum Requirements
- Must utilize strong, standards-based/modern E2EE.
- Must have thoroughly documented encryption and security practices.
- Must have a published audit from a reputable, independent third party.
- All non-essential telemetry must be optional.
- Must not collect more PII than is necessary for billing purposes.
Best-Case
Our best-case criteria represents what we would like to see from the perfect project in this category. Our recommendations may not include any or all of this functionality, but those which do may rank higher than others on this page.
- Telemetry should be opt-in (disabled by default) or not collected at all.
- Should be open source and reasonably self-hostable.