Forum Discussion

New Contributor

2 years ago

Encrypted at rest when locked?

When the 1Password vault, extension, or app is locked on Windows and Android platforms, is the data encrypted at reset? This implies that there are no feasible physical or hardware-based attacks capa...

windows

Maldroid

New Contributor

2 years ago

I didn't have a particular attack in mind. My main concern was to ensure that someone with physical access couldn't launch an attack that would compromise the encryption key for the vault. Given that the vault is encrypted at rest while locked, such an attack should be infeasible.

I've heard about "vulnerabilities" in BitLocker and other full-disk encryption systems, like malicious reset attacks or Direct Memory Access (DMA) attacks. This can be mitigated with preboot authentication but this is way off topic.

Forum Discussion

Encrypted at rest when locked?

Featured discussions

November at 1Password: the Access-Trust gap, planning your estate, and an updated unlock experience

Recent discussions

High background usage on iOS 26

Recent autofill issues on Android and iPadOS

Multiple email addresses but only shows one option on AutoFill

When I open Safari on my iMac, why is there no padlock symbol on the 1Pass icon in the toolbar?

Has something changed: http:// not filling in any more?