Forum Discussion

New Member

10 hours ago

Enable DNSSEC

1Password domain names are not signed with DNSSEC (at least 1password.com and 1password.eu). Customers are therefore potentially vulnerable to MITM attack. This means that when attempting to access t...

1password.com

feature request

1P_Dave

Moderator

3 hours ago

Hello antoinejdd! 👋

Thanks for bringing this up! Our security white paper touches on this topic on page 52 under Transport Security- TLS:

Neither certificate pinning nor DNSSec have been implemented. Given the mutual authentication described in "A modern approach to authentication", the marginal gain in security provided by such measures is not something we consider to be worth the risk of loss of availability should those extra measures fail in some way.

Regarding any other concerns, please send an email to support@1Password.com so that the relevant team can take a look and address your concerns directly.

-Dave

Forum Discussion

Enable DNSSEC

Featured discussions

December 2025 at 1Password: More browser options, easier sign-in, and safer saving and filling

Recent discussions

ETH Zürich paper concerns

1PW Safari extension repeatedly unlocking/locking

Bug: CXP export on iOS shows 0 items (Family subscription)

Migrating from one account to another on a Chromebook

When I try to Log In, 1Password says that my account has been deleted