I'd be interested to read a section in the whitepaper about what you think the weakest links are in your security model. In other words, supposing I am not an especially high-value target, and supposing my 1Password vault is breached, what is the most likely way that happened?
If I'm a high-value target, then pwning me is easy. The intelligence services just "look over my shoulder" with video camera surveillance of my fingers on the keyboard, or a zero-day OS exploit, or whatever.
If I'm a not a high-value target, I suspect the weakest link is still something local. Maybe something like a keylogger and data exfiltration program that gets installed via a compromised update of some app I have on my computer, for example. Then the attackers vacuum up thousands of [secret-key-decrypted] vaults and [keylogged] master passwords, and I happen to be one of the fish caught in the net.
Assuming it's not something local, what's the most likely scenario?
- There is a heretofore unknown fundamental weakness in the cryptographic algorithms used by 1Password. An advanced adversary steals vaults from AgileBits via zero-day exploits of AgileBits's server infrastructure, and uses the identified weakness to crack all the vaults.
- AgileBits is infiltrated by intelligence services, or an employee becomes disgruntled and goes rogue. To collect secret keys and master passwords, that employee subtly weakens or backdoors 1Password without other engineers realizing.
- In 2018, an adversary steals vaults from AgileBits via some exploit of AgileBits's server infrastructure. They leak to the public. In 2024, AgileBits switches to an efficient post-quantum algorithm. In 2027, there is a quantum computing breakthrough. An adversary uses Shor's algorithm on a quantum computer to decrypt the stolen vaults from 2018. Many of the passwords still work.
- There is an innocent bug in a 1Password app or the implementation of PAKE+2SKD. It is a bad bug. It turns out that absolutely everything is leaking through the scroll lock LED or whatever. Oops. You didn't consider that kind of bug. Donald Rumsfeld mumbles about "unknown unknowns".
- AgileBits has actually been a front by intelligence services all along.
(I mean, clearly it's #5. But supposing it's not. )
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided