1.6 KiB
layout, title, categories, featured, popular, tags
| layout | title | categories | featured | popular | tags | ||
|---|---|---|---|---|---|---|---|
| article | What encryption is being used? |
|
true | false |
|
bitwarden uses AES{:target="blank"} 256 bit encryption as well as PBKDF2{:target="blank"} to secure your data.
AES{:target="blank"} is used by the US government and other government agencies around the world for protecting top secret data. With proper implementation and a strong encryption key (your master password), AES is considered unbreakable.
PBKDF2{:target="blank"} is used to derive the encryption key from your master password. This key is then salted and hashed.
bitwarden does not write any crypto code. bitwarden only invokes crypto from popular and reputable crypto libraries that are written and maintained by cryptography experts. The following crypto libraries are used:
- Javascript (web and browser extension vaults)
- Forge{:target="blank"}
- Web Crypto{:target="blank"}
- C# (mobile vault)
- CommonCrypto (iOS, Apple)
- Javax.Crypto (Android, Oracle)
- BouncyCastle{:target="blank"} (Android)
bitwarden always encrypts and/or hashes your data on your local device before it is ever sent to the cloud servers for syncing. The bitwarden servers are only used for storing encrypted data. It is not possible to get your unencrypted data from the bitwarden cloud servers.