Protect what matters – even after you're gone. Make a plan for your digital legacy today.
Forum Discussion
Solved
Login with QR - a risk?
Hello, I have a concern on the login with QR. I’ve read how it securely sends my secret key and master password and how I need to verify on the approver device but if someone had my passw...
Hello security1010! 👋
Thanks for the question! Signing in to 1Password with a QR code is secure, you can find more information here:
If someone gets access to your 1Password account then they would have access to all of your items even without the QR code feature. They could take screenshots of your items and save those without you knowing. The best way to protect yourself is to make sure that 1Password is locked when you're not using it: How to set 1Password to lock automaticallyYou can also enable two-factor authentication using a security key for your account. When enabled, you'll still need to provide your security key even when signing in using a QR code (this does not apply to two-factor authentication using a TOTP authenticator app for family/individual accounts): Turn on two-factor authentication for your 1Password account
Once you sign in to a new device using a QR code, you'll receive an email letting you know that your 1Password account has been accessed from a new device, and you'll see that new device listed on your profile (in the top right corner) when logging into and accessing 1Password on the web.
I hope that helps.
-Dave
1P_Dave
Moderator
ModeratorHello security1010! 👋
Thanks for the question! Signing in to 1Password with a QR code is secure, you can find more information here:
If someone gets access to your 1Password account then they would have access to all of your items even without the QR code feature. They could take screenshots of your items and save those without you knowing. The best way to protect yourself is to make sure that 1Password is locked when you're not using it: How to set 1Password to lock automatically
You can also enable two-factor authentication using a security key for your account. When enabled, you'll still need to provide your security key even when signing in using a QR code (this does not apply to two-factor authentication using a TOTP authenticator app for family/individual accounts): Turn on two-factor authentication for your 1Password account
Once you sign in to a new device using a QR code, you'll receive an email letting you know that your 1Password account has been accessed from a new device, and you'll see that new device listed on your profile (in the top right corner) when logging into and accessing 1Password on the web.
I hope that helps.
-Dave
