Secret key question

In the help documentation for secret key it says that the secret key is generated on our own device and is't known by 1Password/AgileBits.
My question is, how can this be the case since we download the Emergency Kit, which includes the secret key in plain text, from the 1Password web site? So it must be generated on the 1Password web site and therefore known to 1Password/AgileBits, no?

1Password Version: 7.6.793
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: 1Password Account


  • ag_tommyag_tommy

    Team Member
    edited March 10


    Everything is happening on device within the browser locally. The Secret Key is never transmitted across the net. When you make the print out it is from within the browser again locally. I've included a few links which you may find helpful.

    What if 1Password gets hacked?

  • Thanks @ag_tommy. So does this mean that when I signed up for the 1Password account the Emergency Kit PDF is being created and downloaded solely by my browser rather than on the server? I looked in the links and didn’t see this specifically mentioned (ie. the PDF creation). Thanks

  • ag_tommyag_tommy

    Team Member
    edited March 11


    Yes, the Secret Key is generated for printing on the device within the browser. It is not downloaded from the server. That's the beauty of the setup its just like your Master Password only you know it.

    If you do not save the Secret Key during account creation and later cannot locate it, there is no way for us or you to access your data. Even if you know one side of the equation (Master Password) you cannot access the data without the second part.

    There is a close parallel conversation going over in our lounge where a member of the security team has been assisting other users. I'd like to point you to one of his posts that may help.

Leave a Comment

BoldItalicStrikethroughOrdered listUnordered list
Align leftAlign centerAlign rightToggle HTML viewToggle full pageToggle lights
Drop image/file