Where does 1Password store the secret key locally on Windows?

Maldroid
Maldroid
Community Member
in Windows

"Unlock 1Password without entering your Secret Key every time. It’s stored in the 1Password apps and browsers you’ve used to sign in to your account on 1Password.com.*" Assuming you already have signed in once, does 1Password store the secret key locally presumably somewhere in the AppData folder?

1Password Version: Latest
Extension Version: Latest
OS Version: Windows 10/11
Browser: Chrome

Comments

  • AliH1P
    AliH1P

    Hey @Maldroid, thanks for reaching out.

    That's correct, after signing in to the 1Password app on a Windows device, your Secret Key is stored locally in the database file (1password.sqlite) found in AppData.

    This location will differ depending on which platform you use. Since we can't use the same private key that protects your 1Password data to also encrypt your Secret Key on the disk (this would be like locking the key to a safe inside of the safe itself) we save the Secret Key on your device using obfuscation methods along with the protections available on that platform.

    If you're interested in learning more about this from a Security perspective, check out the "Locally exposed Secret Keys" section in our security white paper: 1Password Security Design

    Let me know if you have any further questions!

    Ali

This discussion has been closed.