woelfchen Posted March 8, 2021 Report Posted March 8, 2021 (edited) I use enpass a lot, but my password is quite long and takes ages to enter. Both mobile apps allow for biometric unlocks thanks to their respective TPM modules. I would like to take advantage of that since there is no biometric authentication for the Desktop app. First you would link the two devices through a shared secret (prefereably QR-encoded). After that the Desktop app would be able to receive the password encrypted with the shared secret via the local network. The Desktop app then decrypt the vault as usual. Voila: Biometric unlocks for the Desktop app. When properly encrypting the password, this approach shouldn‘t be vulnerable. If you have access to the screen and keyboard/mouse to view the passwords you already have physical access to a machine, enabling more meaningful attacks. The specifics are up to you. I‘ve been really happy with your additions and I think you could implement this is a save and easy to use way. Edited March 8, 2021 by woelfchen typo
Garima Singh Posted March 9, 2021 Report Posted March 9, 2021 Hey @woelfchen Thank you for reaching out about this along with a brief description of how we can make this possible. I've shared your interest to add this functionality of unlocking Enpass app on desktop using the bio-metrics of mobile device with my development team so that they can factor it into their strategy.
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now