Feature Request - Secure Vault

Dear 1Password Support Team,  

I’m a dedicated 1Password user and value its robust security features. However, I’d like to propose a new feature inspired by Microsoft OneDrive’s Personal Vault to enhance protection for critical, rarely accessed items in 1Password, balancing convenience for daily use with heightened security for sensitive data. 

I suggest implementing a Secure Vault feature within 1Password, where users can designate specific items or a dedicated vault as requiring multi-factor authentication (MFA) for access, even when the main vault is unlocked. Similar to OneDrive’s Personal Vault, which uses MFA (e.g., a push notification via the Microsoft Authenticator app, SMS code, or biometric verification) to unlock a protected folder, this Secure Vault would prompt for a one-time MFA verification—such as a push notification to a registered device, a code from an authenticator app, or an SMS—each carcass each time the user attempts to view or edit these items. Additionally, the Secure Vault could auto-lock after a short period of inactivity (e.g., 5–20 minutes, configurable by the user), requiring re-authentication for subsequent access, mirroring OneDrive’s automatic locking mechanism.

This feature would allow users to keep day-to-day items (e.g., website logins) easily accessible during a session while ensuring sensitive data (e.g., banking credentials or legal documents) remains protected behind an additional authentication layer. For example, a user could tag items as “High Security” or move them to a Secure Vault, which would remain locked until MFA is completed, even if the main 1Password app is open. This would mitigate risks if a device is compromised or left unattended while unlocked.

Key Aspects of the Proposed Feature MFA Integration:

• Support multiple MFA methods, such as push notifications to the 1Password mobile app, TOTP codes from authenticator apps, or SMS/email codes, to verify identity for Secure Vault access.
• One-Time Access: Each access attempt requires fresh MFA, preventing prolonged exposure of sensitive data.
• Auto-Lock: The Secure Vault locks automatically after a user-defined inactivity period, requiring MFA to reopen.
• User Flexibility: Allow users to choose which items or vaults require this extra protection, preserving convenience for less sensitive data.

I believe this Secure Vault feature would appeal to users managing both routine and highly sensitive information, offering peace of mind for personal and professional use. If similar functionality is under consideration or if there are existing workarounds to achieve this, I’d appreciate any guidance. For inspiration, Microsoft’s OneDrive Personal Vault demonstrates how MFA and auto-locking can effectively secure a subset of cloud-stored data.

Thank you for considering this request. I’m excited about the potential for 1Password to incorporate such a feature and would love to hear your thoughts or join the 1Password Community to discuss further.