Is it secure to use passbolt in its current version?
Passbolt is currently considered as “stable” and has already undergone several security audits. It is used by thousands of companies that trust it for storing their passwords. The strict end-to-end and asymmetric encryption model, associated with the robustness of OpenPGP ensure that the solution implements some of the best known standards in terms of security. However, the answer to whether you should store critical information with it depends on your security level requirements.
We will publish soon a white paper explaining passbolt security model in depth. Until then, you are welcome to contact us directly and ask your questions.
Other frequently asked questions in the same category
- How can I report a security vulnerability?
- What data is encrypted in passbolt?
- What kind of encryption does passbolt use?
- Has the code been reviewed?
- How does authentication work in passbolt?
- How can I change my passphrase?
- Is open source software less secure?
- My secret key and passphrase are compromised, what do I do?
- Does passbolt support revocation certificates?
- How are public keys trusted?
- What is the security token?
- Is it secure to use passbolt in its current version?