Is it possible to hide passwords from team members?

mmcwatters
mmcwatters
Community Member

We are wondering if it's possible for users to generate and use passwords without seeing the passwords (they remain blinded)? This way, if someone leaves the organization they will not have the login and password.


1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided

Comments

  • khad
    khad
    1Password Alumni
    edited May 2016

    Hi @mmcwatters,

    Thanks for asking about this.

    1Password Teams does have the ability to disable the "reveal" permission for users in vaults that you specify.

    However, please keep in mind that it only protects against casual or accidental password viewing/copying. Someone who is even slightly determined can simply edit the source on a page (or use a bookmarklet or extension to do it automatically) to change all the password fields on a page to plain text fields. You can see a bunch of extensions to do this with a simple Google search:

    https://www.google.com/search?q=reveal+password+extension

    This is true for any solution — not just 1Password. If someone can use a password to log in somewhere, they can view that password (and likely change it and lock you out as well).

    An example story from our 1Password Teams Security Design white paper (page 33):

    The administrators have come to be wary of how the dog Patty (see Story 6 for background) treats data. They want Patty to have access to the password for the dog door (they want her to be able to leave and enter as she pleases), but they do not want Patty to give that password to any of her friends should her paws accidentally press the ”reveal” button.

    And so, the administrators limit Patty’s ability to reveal the password. She can fill it into the website that controls the dog door (she lives in a somewhat unusual household), but she cannot accidentally press 1Password’s “reveal” button while her friends are watching. This is protected by client policy.

    But Patty is a clever dog. When she uses 1Password to fill in the website, she then uses her browser’s debugging tools to inspect what 1Password has inserted. She gets the password, and she tells it to all of her friends so they may come and visit.

    The house is overrun with Patty’s friends running wild, and the administrators have learned an important lesson that client policy controls are easily evaded.

    if someone once had access to a password, you must change it after they leave if you don't want them to have access to it. To assume they never revealed the password after filling it on a page (where it is out of the control of 1Password or any password manager) is not a safe assumption.

    If we can be of further assistance, please let us know. We are always here to help.

    Cheers!

  • mmcwatters
    mmcwatters
    Community Member

    Thanks for the response. Very helpful!

  • On behalf of Khad, you're welcome. Let us know if you have any other questions! :)

This discussion has been closed.