bitwarden/help
1
0
Fork 0
mirror of https://github.com/bitwarden/help synced 2026-01-08 11:33:45 +00:00
Code Issues Releases Wiki Activity

fixes #549 clarifies that vault data is stored encrypted (#551)

Browse Source 
* fixes #549 clarifies that vault data is stored encrypted

* Biometrics article to match!

Co-authored-by: fred_the_tech_writer <69817454+fschillingeriv@users.noreply.github.com>
This commit is contained in:
Trey Greer
2021-04-14 10:32:22 -04:00
committed by GitHub
parent b69b0b9d8f
commit 33dfc8e40c
2 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
_articles/account/biometrics.md
View File

@@ -140,7 +140,7 @@ In order to understand why unlocking and logging in aren't the same, it's import
1. Logging in will always require your Master Password, because your Master Password is the source of the key needed to decrypt your Vault data. Additionally, because decryption is an operation that needs to be protected, this stage is where [any enabled Two-step Login methods]({% link _articles/two-step-login/setup-two-step-login.md %}) would be required.
2. Logging in will always require you to be connected to the internet (or, if you're self-hosting, connected to the server), because you need access to the encrypted Vault in order to decrypt it.
**Unlocking** can only be done when you're already logged in. In other words, only when your Vault data is already decrypted to your device. Because your Vault is already decrypted:
**Unlocking** can only be done when you're already logged in. In other words, only when your Vault data is already stored (encrypted) on your device. Because your Vault is already downloaded and your decryption key stored in memory:
1. You don't need the decryption key derived from your Master Password, so you're free to use other access methods, like [PIN codes]({% link _articles/account/unlock-with-pin.md %}) and [biometrics]({% link _articles/account/biometrics.md %}).
2. You don't need to be connected to the internet (or, if you're self-hosting, connected to the server).

2
_articles/account/unlock-with-pin.md
View File

@@ -95,7 +95,7 @@ In order to understand why unlocking and logging in aren't the same, it's import
1. Logging in will always require your Master Password, because your Master Password is the source of the key needed to decrypt your Vault data. Additionally, because decryption is an operation that needs to be protected, this stage is where [any enabled Two-step Login methods]({% link _articles/two-step-login/setup-two-step-login.md %}) would be required.
2. Logging in will always require you to be connected to the internet (or, if you're self-hosting, connected to the server), because you need access to the encrypted Vault in order to decrypt it.
**Unlocking** can only be done when you're already logged in. In other words, only when your Vault data is already decrypted to your device. Because your Vault is already decrypted:
**Unlocking** can only be done when you're already logged in. In other words, only when your Vault data is already stored (encrypted) on your device. Because your Vault is already downloaded and your decryption key stored in memory:
1. You don't need the decryption key derived from your Master Password, so you're free to use other access methods, like [PIN codes]({% link _articles/account/unlock-with-pin.md %}) and [biometrics]({% link _articles/account/biometrics.md %}).
2. You don't need to be connected to the internet (or, if you're self-hosting, connected to the server).