Falcon Crowdstrike vs 1Password?
Hello, can you tell if there could be a security issue in any way for some reason, if Crowdstrike is installed on a windows computer when using 1Password, both the desktop version and the chrome browser extension?
Crowdstrike is an endpoint security tool that monitors everything going on in regards to internet traffic and more. I know for sure that the URL to 1Password will show up and be visible to an admin of Crowdstrike. But that itself is not a problem.
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Comments
-
Hi again @DanielW, back again. 👋. To paraphrase the advice from our security folks:
TL;DR: It might be helpful to shift consideration from the specifics of a given piece of software and more towards your specific comfort level or risk tolerance. Specifically:
Most of the "management" software aimed at remote administrators today is pretty significantly invasive and runs at a low level on the device in question. Our suggestion would be not to use a personal 1Password account on a company-provided device you know is pre-installed with such surveillance-ware.
As a potential workaround, if you have a smartphone or other personal device with you at work, one option is to use that for whatever personal business you need to do during the workday, instead of adding your personal 1Password account to the corporate device.
Alternately, if that seems too onerous, you can accept the risk of using 1Password on the monitored device. It's relatively unlikely that an employer is going to be "spying on" their own employees to the extent of recording their Secret Keys and Account Passwords, but of course this depends on the employee and the employer. If you want to be (as) sure (as you can be), then just avoid using 1Password on this device.
I hope this provides a helpful frame from which you can assess your own security and privacy needs. Thanks again for raising the question, and feel free to let us know if we can be of any further help! 😀
0