![]() ![]() ![]() I mean, sure, someone might get hold of my encrypted vault (which is easily found in the file system on your computer), but that gains an attacker nothing. The potential threats from infiltrating my computers or servers is not nearly as likely vector for me. ![]() What are your greatest risks? In my case, I am more concerned with losing my vault (house fire, losing my hardware, etc.). Being accessible via web opens some potential attacks via key logging, browser injection (malicious JavaScript), or bugs in the browser itself.Īs with any security analysis, you need to create a threat matrix. What does have slight traction are some concerns over the web server itself. Hijacking the persistent storage of a Bitwarden server would gain you nothing. The Bitwarden architecture is such that the centralized vault store is not a security risk. ![]()
0 Comments
Leave a Reply. |