Thank you for the great and helpful video. A couple questions though: if I was originally using a password to login to my Google account and that password is stored in 1Password, once I create the passkey for Google in 1Password do I delete the password or do I need to keep it just in case? In other words, is it redundant to have a passkey and a password? Or does it weaken security in any way to have both? And the second question: if I set up a passkey in my 1Password, can I also set up a passkey on my Yubikeys for the same account (i.e., Google) in case the device I am using does not have 1Password installed on it or in case I ever lose access to my 1Password account?

While 11 months late on this video.... You can also choose a password manager that does not store your password vault on the internet. Only a couple do this. Some create an encrypted password vault on your local computer so even if a site gets hacked... that site can ONLY get the one password that was passed through the web-extention. (if your whole vault is stored in a web extension like lastpass or one-pass you risk losing your whole vault to a nefarious website.)

too much trouble in set up!

i scanned his qr code and got rickrolled

Love that left side mono audio bro...

This advice is straight up wrong. You want to set parallelism to 1. Higher than 1 will make it faster to crack your vault, and will offer you no speed benefits for unlocking your vault if you are using bitwarden on desktop (which currently doesn't support multiple threads for argon).

But doesn't this mean that if someone enters remotely in your computer he will have access to all the passwords you've saved on your Chrome browser?

Jason, some food for thought, perhaps next time, when reviewing security-like products MENTION |MAKE USE OF CVE / OWASP / CISA / SOLARWINDS / MITRE ATT&CK People like you have a channel, I don't, I deal with cyber threats.

Suffice what people say, as a hacker refusing to use 'cybersecurity pro' and such, I have been using Proton and suffice what channels say, you need only to consult CVE (Common Vulnerabilities and Exposures) and / or the OWASP (Open Web Application Security Project) sites (maybe even CISA CERN (founders of Proton), GrapheneOS, WWWF, EU (Horizon 2020 Grant No 848554), WireGuard, Ranking Digital Rights, EDRi, Tor, Privacy International to name a few GIANTS which FUND Proton and they would not if Proton was crap... All this, I need to know, because of what I do, If not then go vanilla and use Bitwarden or Lastpass (there are CVE entries though). Rest is up to you. I never change my mind when I comment. [edit] if the 'black/purple' is more of a concern opposed to safety, then skip Proton, oh wait, you can change the dafault settings to plain white, but again, you would know this if did actually did research... in say Linux/Windows/Android/Unix what is the BACKGROUND COLOR OF THE TERMINAL WINDOW? Correct... BLACK. No, I did not mention MacOS/OSX which the default for the most part for most users will be light. I did not mention it because it is the exception to the rule which explains a lot. I am not commenting to be kind, I comment to be accurate, unbiased, ethical and most importantly I care about the security of those reading this... I don'tt care about opinions / feelings / emotions regarding high risk technical content. I do not comment to entertain but to educate.

Really nice video. I just had a couple of questions. Which authenticator app would you recommend? I am currently using Authy. Secondly, how safe are passkeys? If they are device-bound, wouldn't it be possible for someone to gain access if the device gets compromised?. Also is it safe to use it in iphone ? Again, this might be a really dumb questions, but I just wanted to know.

With 2FA tho is this even necessary?

My Bitwarden account is protected by a 44-character password, 2FA in the form of a passkey, and I'm still using PBKDF2, but set the iterations to 1 million. The wait time on my phone is noticeable, but not excessive (3-5 seconds).

I got have way thru your video where you import your passwords. I am not using any password manage so I am trying to import my passwords from an excel file saved as a *.csv file.. After selecting Bitwarden.csv file as format, I try to import my password file and get" error message " Data is not formatted correctly. Please check you import file and try again." How do you manually enter passwords one by one since this step is anything but "Super Easy" as you say in your video????????????????????? Additional details at this step would be most helpful!

Hii Jason, your channel is amazing! Would you like to try our team's new VPN app? We think our collaboration would be a great fit! Please leave your email address so our marketing team can reach out to you. Thank you:)

How do you get Bitwarden to take over using passkeys in Windows 10? Whenever I attempt to do anything with passkeys, whether logging in or creating one, WIndows prompts me to insert a security key.

thank you so much!! this really helped.

3:09 I always thought zero-knowledge encryption was just, the password was turned into a key and tested on its merits - if it successfully decrypted the vault, it must be the correct password. If it failed, then it wasn't correct. Interesting! Does that mean Bitwarden does have a database of hashes?

Question: If a password of mine is in one or more data breaches, but the password breach was only bcrypt hashes and my password is very secure and long, is it safe to use it on a website still?

Very well made tutorial! Can't wait to set it up this week. Got two questions for you please. 1- any experience exportig/importing passwords from apple devices/icloud? If so how was the process ? 2- Why did you have to "touch" your hardware key ? Even confused me when you were asked to do so during setup..

Great video. Can you please do a video about securing your home network router and pc for online banking. Thank you

i love this 10$ for a year!! im definitely going to buy it

Do you think it can help with current account security, iow, updating/changing passwords and/or email addresses for aliases?

one of the craziest beard genetics I've seen

If we clear all credentials on Android, will it delete all my files, app data, pics, et?

i created bitwarden access using passkey, but still prompt to key in password.. not sure why, probably this is still in beta

Thanks~

I like to ask... I already have security keys setup on my account. Does it then matters if someone cracked my password? Am I still okay?

What about 2FS with an authenticator app? That's what I have setup.

can you do a video or have you done one about if you set up an account via the web, will it be the same on mobile devices i.e. Facebook.

If a passkey is stored on the device, e.g., my laptop, and I get a new laptop, how does it migrate to the new device? I'm sure it's really simple, but I am not sure. Thanks.

How to do without Google ? Why does having a pass key or youbi key required ?

1password only support autofill on url link in my mobile phone but doesnt support android app in my samsung ultra s24. I have already tick autofill and selected 1 password as prefered password service. I m totally pissed off as have spent 3 hrs in enabling 1 password for my mobile app.

GREAT video thank you ! I signed up for 1password back in 2019 but never set it up or followed through and it has since became frozen. Decided to look back into it and got this message after logging in (which I still can do) I still have my Emergency Kit and the info is the same .:::: Your Individual trial has ended. Your account is frozen and your data is in read-only mode. Subscribe now to continue using 1Password. I currently have Google and Avira password managers which I think are free. Once I reset my 1password, do I delete those accounts?? Also the passwords in there are what I import to 1password correct ?

I love the idea too, and you are an excellent videographer; but as a senior not brought up on computers, I still have difficulty getting how to do this. Examples of where I got stuck: "pass phrase"- had to stop and look it up. "MFA" - What's that? Ahh, multi factor authentication. "Hardware key" - Show us what one looks like and how you actually use it. (I saw you press something off camera.) I began to get lost on "Install 1Password on Windows" section. I didn't understand which passwords you were referring to at times--the ones I already had or the new 1p password. It was a little too fast for me as I am unfamiliar with where you are clicking. I'm going to keep re-listening to this over again though until I get it. None of my remarks are meant to downplay the excellence of your video. I'm sure the vast majority of people watching this had no problems whatsoever. Just trying to explain where us older folks get hung up. Thank you so much for making this video!

Trouble with experts is you are unable or unwilling to see, think as a non tech user. You ost me after es than 1 min - no help to me

Best

Imagine storing your crypto keys with online password manager? :O You can do dhis with offline one and backup.

My paid Bitwarden account has ben hacked (acces from another country) login and copy of all my passwords. Bitwarden answered me this is normal, since I haven't activated 2FA authentication...

Passbolt backup and recovery, It is a nightmare, each user has to keep his private key. Not useful for family neither for an organization.

What about njalla vpn? Best one for privacy

11:00 I can see your email address

This is horrible! Signed up and the first time I go to sign in my password is not recognized. I wrote down the password so I know it is correct. Requested that they cancel my account and refund me.

I don't really like passkeys, the improvements over having a regular password management are marginal, and if someone breaking into my vault was a concern now it's worse, I cannot pepper my passkey and for some reason webs that support passkeys doesn't allow me to do passkeys + 2FA, and I cannot share my credentials with my family

I don't get this. If I was on the proper website, it would not have a malicious on it. If I was on a fake site, it will not autofill.

Great tutorial! You make me come back to cloud passwords managers again! 😁. I was using Keepass before, but I get tired of how Keepass works, its updates, sync with my phone and pc, etc. I truly don't know how you have 6.5k subs only, keep going!

too complex to set up. Plus you require to physically store secret key

Thanks for your Video. I just want to use Proton Pass on my Android Device (without a Computer). In the Proton Pass App there is no option to import my Passwords from Google PW Manager? 🤷🏻‍♂️

amazing video thanks

Will only read one key. Still, one beats none.