Security in business environment with firewall logging

Hello,

I want to start using 1Password for my business passwords as well. At work we have a watchguard firewall which replaces SSL certificates to log activities.

My questions are:
1. Will I be able to use 1Password or will it just not connect because of the certificate switch?
2. I guess so, but is there an additional encryption layer for all the keys (master password, security key) send over when first logging in so it can't be seen in the logs?

Regards
Phillip


1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided

Comments

  • Hi @Phillip Brand,

    Thanks for writing in.

    1. Will I be able to use 1Password or will it just not connect because of the certificate switch?

    No, 1Password will not be able to connect due to the invalid certificate. It is effectively a middle in the man attack, so it will reject it.

    1. I guess so, but is there an additional encryption layer for all the keys (master password, security key) send over when first logging in so it can't be seen in the logs?

    Neither keys are ever sent anywhere, we use [Secure Remote Password] protocol instead. So, yes, there are additional encryption levels against this. We have a detailed security whitepaper if you'd like to read more about what we're doing.

This discussion has been closed.