The Windows Hello experience is garbage, with or without TPM. Please just let me keep 1P unlocked.

1Password Team

4 years ago

This is a great question. The short version is that in order to keep your 1Password data secure on your device, this requires encryption of your 1Password data. We're always working to provide the best balance of security and convenience, and both are very important. With that said, we'll never be a product that offers one without the other.

To ensure that your data stays secure, your encryption keys can never be written to disk. When you sleep your device, the encryption keys remain in memory, but when you restart your device, they're reset. It's possible to use Windows Hello to unlock 1Password without a TPM, but the only way we can safely persist the encryption keys for your 1Password data across device reboots or after quitting 1Password is to store the encryption keys in a TPM.

As for the user experience of using Windows Hello to unlock, 1Password asks Windows Hello to unlock, and from that point on Windows Hello is in charge of deciding which Hello option is displayed.

Jack

Forum Discussion

The Windows Hello experience is garbage, with or without TPM. Please just let me keep 1P unlocked.

Recent Discussions

macOS Tahoe, 1P nightly, and Apple Watch

Change date format...

Find items that have TOTP configured?

Feature Request: Autotype based on window title

1Password will not download update