My secret key and passphrase are compromised, what do I do?
The secret key is in itself encrypted with a passphrase and cannot be used without it.
If your passphrase has also been compromised, you will need to start a new with a fresh key and use your revocation certificate (see other FAQ in this section).
Other frequently asked questions in the same category
- How can I report a security vulnerability?
- Is it secure to use passbolt in its current version?
- What data is encrypted in passbolt?
- What kind of encryption does passbolt use?
- Has the code been reviewed?
- How does authentication work in passbolt?
- How can I change my passphrase?
- Is open source software less secure?
- My secret key and passphrase are compromised, what do I do?
- Does passbolt support revocation certificates?
- How are public keys trusted?
- What is the security token?