Prevent export of private keys?
I miss a setting to prevent (accidental) exports of private keys stored in 1Password. It is a bit too easy right now to export private keys, which allows users to take confidential information and store it in the wrong place.
The use-case here is to prevent a user, perhaps an uneducated user who does not have experience with life cycles of private keys, from exporting a secret, rather than to prevent a knowledgable attacker with physical access to a computer with 1Password in an unlocked state.
For example, a setting which prevents the GUI from showing the private key would fulfil my need.
Comments
-
Great feature request! On which level would you like to configure this? On a per-key basis? Per vault? Or full organization level?
And would you expect such a restriction to also be applied to the CLI commands?
0
