all-in-one privacy solution":["Proton Unlimited es una solución de privacidad todo en uno"],"Black Friday":["Black Friday"],"No ads. Privacy by default.":["Sin anuncios. Privacidad por defecto."],"People before profits":["Primero las personas, luego los beneficios"],"Security through transparency":["Seguridad con transparencia"],"The best Proton Mail ${ BLACK_FRIDAY } deals":["Las mejores ofertas de Proton Mail en el ${ BLACK_FRIDAY }"],"The world’s only community- supported email service":["El único servicio de correo electrónico del mundo respaldado por la comunidad"]},"specialoffer:limited":{"${ hours } hour":["${ hours } hora","${ hours } horas"],"${ hoursLeft }, ${ minutesLeft } and ${ secondsLeft } left":["Tiempo restante: ${ hoursLeft }, ${ minutesLeft } y ${ secondsLeft }"],"${ minutes } minute":["${ minutes } minuto","${ minutes } minutos"],"${ seconds } second":["${ seconds } segundo","${ seconds } segundos"],"Limited time offer":["Oferta por tiempo limitado"]},"specialoffer:listitem":{"Create multiple addresses":["Cree múltiples direcciones"],"Hide-my-email aliases":["Seudónimos de hide-my-email"],"Quickly unsubscribe from newsletters":["Cancele suscripciones a boletines rápidamente"],"Use your own domain name":["Use su propio dominio"]},"specialoffer:logos":{"As featured in":["Tal como aparece en"]},"specialoffer:metadescription":{"Get an encrypted email that protects your privacy":["Obtenga un correo electrónico cifrado que protege su privacidad"]},"specialoffer:metatitle":{"Proton Mail Black Friday Sale - Up to 40% off":["Oferta de Black Friday de Proton Mail: hasta un 40% de descuento"]},"specialoffer:newmetadescription":{"Get up to 40% off Proton Mail subscriptions this Black Friday. Find great deals on our secure end-to-end encrypted email plans.":["Aproveche las rebajas de Black Friday y obtenga suscripciones de Proton Mail con hasta un 40 % de descuento. Encontrará las mejores ofertas en planes de correo electrónico seguro cifrado de extremo a extremo."]},"specialoffer:newmetatitle":{"Proton Mail Black Friday sale | Up to 40% off secure email":["Rebajas de Black Friday en Proton Mail | Hasta un 40 % de descuento en correo electrónico seguro"]},"specialoffer:note":{"* Billed at ${ TOTAL_SUM } for the first year":["*Con un costo de ${ TOTAL_SUM } durante el primer año"],"*Billed at ${ TOTAL_SUM } for the first 2 years":["*Con un costo de ${ TOTAL_SUM } durante los primeros 2 años"],"30-day money-back guarantee":["Garantía de devolución de dinero de 30 días"],"Billed at ${ TOTAL_SUM } for the first 2 years":["Con un costo de ${ TOTAL_SUM } durante los primeros 2 años"],"Billed at ${ TOTAL_SUM } for the first year":["Con un costo de ${ TOTAL_SUM } durante el primer año"],"You save ${ SAVE_SUM }":["Ahorre ${ SAVE_SUM }"]},"specialoffer:off":{"${ DISCOUNT } off":["-${ DISCOUNT }"],"${ PERCENT_OFF } off":["-${ PERCENT_OFF }"]},"specialoffer:testimonial":{"I love my ProtonMail":["Amo mi Proton Mail"],"My favorite email service":["Mi servicio de correo electrónico favorito"],"Thanks Proton for keeping us all safe in the complicated internet universe.":["Gracias Proton por mantenernos a salvo en el complicado universo de Internet."],"You get what you pay for. In the case of big tech, if you pay nothing, you get used. I quit using Gmail and switched to @ProtonMail":["Obtiene aquello por lo que paga. En el caso de la gran tecnología, cuando uno no paga nada, se acostumbra. Dejé de usar Gmail y cambié a @ProtonMail"]},"specialoffer:time":{"Days":["Días"],"Hours":["Horas"],"Min":["min"]},"specialoffer:title":{"And much more":["Y mucho más"],"Make your inbox yours":["Personalice su bandeja de entrada"],"Safe from trackers":["A salvo de rastreadores"],"Stay organized":["Mantenga el orden"],"Black Friday email deals":["Ofertas en correo electrónico del Black Friday"],"Don’t just take our word for it":["No confíe solo en nuestra palabra"],"Our story":["Nuestra historia"],"Transfer your data from Google in one click":["Transfiera sus datos de Google con un solo clic"]},"specialoffer:tooltip":{"Access blocked content and browse privately. Includes ${ TOTAL_SERVERS }+ servers in ${ TOTAL_COUNTRIES }+ countries, connect up to 10 devices, access worldwide streaming services, malware and ad-blocker, and more.":["Acceda a contenido bloqueado y navegue de forma privada. Incluye ${ TOTAL_SERVERS } servidores en más de ${ TOTAL_COUNTRIES } países, conecta hasta 10 dispositivos, acceda a servicios de transmisión en todo el mundo, malware y bloqueador de anuncios, y más."],"Easily share your calendar with your family, friends or colleagues, and view external calendars.":["Comparta su calendario con familiares, amigos y compañeros fácilmente y consulte calendarios externos."],"Includes support for 1 custom email domain, 10 email addresses, 10 hide-my-email aliases, calendar sharing, and more.":["Incluye compatibilidad con 1 dominio de correo electrónico personalizado, 10 direcciones de correo electrónico, 10 seudónimos de hide-my-email, posibilidad de compartir calendario, etc."],"Includes support for 3 custom email domains, 15 email addresses, unlimited hide-my-email aliases, calendar sharing, and more.":["Incluye compatibilidad con 3 dominios de correo electrónico personalizado, 15 direcciones de correo electrónico, seudónimos ilimitados de hide-my-email, posibilidad de compartir calendario, etc."],"Manage up to 25 calendars, mobile apps, secured with end-to-end encryption, 1-click calendar import from Google, and more.":["Administre hasta 25 calendarios, apps móviles, protegido con cifrado de extremo a extremo, importación de calendario con 1 clic desde Google y más."]},"Status Banner":{"At the moment we are experiencing issues with the Proton VPN service":["En este momento, tenemos problemas con el servicio Proton VPN."],"Learn more":["Más información"]},"Status banner":{"Learn more":["Más información"],"Please note that at the moment we are experiencing issues with the ${ issues[0] } service.":["Tenga en cuenta que, en este momento, estamos experimentando problemas con el servicio ${ issues[0] }."],"We are experiencing issues with one or more services at the moment.":["En este momento, tenemos problemas con uno o más servicios."]},"suggestions":{"Suggestions":["Sugerencias"]},"Support":{"Sub category":["Subacategoria","Subcategorías"]},"Support article":{"${ readingTime } min":["${ readingTime } minuto","${ readingTime } minutos"],"Category":["Categoría","Categorías"],"Didn’t find what you were looking for?":["¿No encontró lo que buscaba?"],"General contact":["Contacto general"],"Get help":["Obtener ayuda"],"Legal contact":["Contacto legal"],"Media contact":["Contacto para medios"],"Partnerships contact":["Contacto para colaboradores"],"Reading":["Lectura"]},"Support categories":{"Browse Proton product support":["Explore el soporte de productos de Proton"]},"Support category":{"There is no article in this category yet.":["Todavía no hay ningún artículo en esta categoría."]},"Support troubleshooting":{"--- Select ---":["--- Seleccionar ---"],"App version":["Versión de la app"],"Browser":["Navegador"],"Check if this helps":["Compruebe si le sirve"],"Choose a category for your question":["Elija la categoría de su pregunta"],"Choose a product":["Elija un producto"],"Did this solve your issue ?":["¿Resolvió su problema?"],"Faster assistance is just a few clicks away — please make your selections":["Obtenga ayuda más rápidamente con tan solo unos clics. Haga su selección."],"No, contact support":["No, contactar a soporte"],"Proton account":["Cuenta de Proton"],"Proton Bridge":["Proton Bridge"],"Proton Calendar":["Calendario de Proton"],"Proton Drive":["Proton Drive"],"Proton for Business":["Proton for Business"],"Proton Mail":["Correo de Proton"],"Proton Pass":["Proton Pass"],"Proton VPN":["VPN de Proton"],"Thank you for your feedback":["Gracias por sus comentarios"],"Troubleshooting":["Solución de problemas"],"What can we help with ?":["¿En qué podemos ayudar?"],"Yes":["Sí"]},"support_modal_search_query":{"Search query":["Consulta"]},"support_search_button":{"Search":["Buscar"]},"support_search_i_am_looking_for":{"I'm looking for":["Busco"]},"SupportForm":{"For a faster resolution, please report the issue from the Bridge app: Help > Report a problem.":["Para una resolución más rápida, reporte el problema desde la app Bridge: Ayuda > Reportar un problema."],"Information":["Información"]},"SupportForm:option":{"Account Security":["Seguridad de la cuenta"],"Contacts":["Contactos"],"Custom email domain":["Dominio de correo electrónico personalizado"],"Email delivery and Spam":["Entrega de correo electrónico y spam"],"Encryption":["Cifrado"],"Login and password":["Inicio de sesión y contraseña"],"Merge aliases and accounts":["Combinar alias y cuentas"],"Migrate to Proton":["Migrar a Proton"],"Notifications":["Notificaciones"],"Other":["Otros"],"Plans and billing":["Planes y facturación"],"Proton for Business":["Proton for Business"],"Sign up":["Regístrese"],"Storage":["Almacenamiento"],"Users, addresses, and identities":["Usuarios, direcciones e identidades"]},"SupportForm:optionIntro":{"Select a topic":["Seleccione un tema"]},"swiss_baseed_feature":{"Swiss based":["Con sede en Suiza"]},"Testimonial":{"Awards":["Premios"],"Customers":["Clientes"],"Featured":["Destacados"],"Go to testimonial source":["Ir a la fuente testimonial"],"Reviews":["Reseñas"],"Videos":["Videos"]},"Text":{"Find the plan that's right for you":["Encuentre el plan adecuado para usted"],"If you need help, check out our ${ supportLink }.":["Si necesita ayuda, consulte nuestra ${ supportLink }."],"The page you’re looking for might have been removed, or it could be an\nold link.":["Es posible que la página que busca haya sido eliminada o que sea un\nenlace antiguo."]},"Title":{"On this page":["En esta página"],"Related articles":["Artículos relacionados"],"Share ${ thisPage }":["Compartir ${ thisPage }"],"Thank you!":["¡Gracias!"],"this page":["esta página"]},"Tooltip":{"More information":["Más información"]},"tooltip_calendar":{"Create up to 20 custom & shareable encrypted calendars. On top of that, add up to 5 calendars from friends, family, colleagues, and organizations.":["Cree hasta 20 calendarios personalizados, compartibles y cifrados. Agregue hasta 5 calendarios de amigos, familiares, colegas y organizaciones."]},"tooltip_vpn":{"Access blocked content and browse privately. Includes ${ TOTAL_SERVERS }+ servers in ${ TOTAL_COUNTRIES }+ countries, highest VPN speed, ${ TOTAL_VPN_CONNECTIONS } VPN connections, worldwide streaming services, malware and ad-blocker, and more.":["Acceda a contenido bloqueado y navegue en privado. Tendrá a su disposición más de ${ TOTAL_SERVERS } servidores en más de ${ TOTAL_COUNTRIES } países, VPN de máxima velocidad, ${ TOTAL_VPN_CONNECTIONS } conexiones VPN, servicios de streaming en todo el mundo, bloqueadores de malware y de anuncios, y mucho más."],"Access blocked content and browse privately. Includes ${ TOTAL_SERVERS }+ servers in ${ TOTAL_COUNTRIES }+ countries, highest VPN speed, 10 VPN connections, worldwide streaming services, malware and ad-blocker, and more.":["Acceda a contenido bloqueado y navegue en privado. Tendrá a su disposición más de ${ TOTAL_SERVERS } servidores en más de ${ TOTAL_COUNTRIES } países, VPN de máxima velocidad, 10 conexiones VPN, servicios de streaming en todo el mundo, bloqueadores de malware y de anuncios, y mucho más."]},"version_history_label":{"Version history":["Historial de versiones"]},"version_history_tooltip":{"Store up to ${ versionHistoryNumber } versions of each file for up to ${ years } years":["Comparta hasta ${ versionHistoryNumber } versiones de cada archivo hasta durante ${ years } años"]},"vpn_features_link":{"View VPN plans":["Ver planes de VPN"]},"vpn_features_useCase":{"Access blocked content and browse privately":["Acceda a contenido bloqueado y navegue de forma privada"]}}},"unleashApi":"https://account.proton.me/api"};
// We need to import data (the framework context) from the server
// This Astro feature with define:vars works well but creates an inline script
// So we can't directly import the initFramework helper, we have to store the context
window.frameworkContext = frameworkContext;
})();
Proton Pass is an end-to-end encrypted(new window) password manager based on the same well-tested encryption that secures the rest of the Proton ecosystem. Proton Pass is unique in that it was designed from the ground up to have a strong focus on privacy and security. It therefore has a more complete encryption model than most other password managers.
Proton Pass doesn’t just encrypt the password field but applies end-to-end encryption to all fields, including usernames, web addresses, and all data contained in the encrypted notes section.
This means Proton Pass prevents anyone, including Proton itself, from knowing which online services you subscribe to or have accounts with. This information, much like your emails or your browsing history, can reveal a lot about you and must be protected if you want to maintain your privacy.
The design of Proton Pass uses end-to-end encryption, guaranteeing that all cryptographic operations, including key generation and data encryption, are performed locally on your device. This means that your unencrypted data cannot be accessed by Proton or shared with any third parties. Proton servers never have access to your unencrypted keys, data, or credentials, including your Proton Account password.
Data model
Proton Pass enables you to store various types of information securely, including:
Credentials: You can store access credentials to websites or apps, which may include a username or email, a password, and a second-factor authentication code (TOTP).
Notes: You can securely store any information that doesn’t fit in a credential field in this free-form text field, including license numbers, codes, or simple text notes.
Aliases: You can also create email aliases with Proton Pass. This feature enables you to create randomly generated email addresses that you can use in place of your real email addresses for online accounts. This makes it easy to shut down an alias that’s linked to a service that’s breached or begins sending you spam without affecting your other accounts.
Proton Pass stores all these items within a secure vault. Vaults provide a convenient way for you to organize and (in the future) securely share your data.
Encryption model
Proton Pass takes a comprehensive approach to ensuring maximum security and privacy for all user data. All cryptographic operations occur locally on your device, and any data transmitted to the server is always encrypted. Proton never has access to the plaintext keys required to decrypt user data, making it impossible for Proton to decrypt stored data, even if requested by third parties.
Proton Pass also benefits from the same advanced encryption we utilize for authentication in Proton Mail. This includes using a hardened version of the Secure Remote Password (SRP) protocol that offers stronger security guarantees against man-in-the-middle (MITM) attacks. Our implementation means that even an attacker who can arbitrarily read, modify, delay, destroy, repeat, or fabricate messages between Proton and a user in an undetectable fashion is limited to checking only a single password guess per login attempt, which is equivalent to just trying to log in directly. This way, even if Proton is compromised and acts maliciously, password-equivalent information is never revealed.
Each Proton Pass user has an asymmetric user key. Proton Pass encrypts this user key as follows:
Accounts that use a single account password: Proton Pass encrypts the user key with a bcrypt hash of the account password and the account salt.
Accounts that use our multiple account passwords feature: Proton Pass encrypts the user key with a bcrypt hash of the key password and the account salt.
The user key is used to open all shares you can access, meaning it must be secured. The bcrypt password hashing implementation used by Proton Pass is more robust and secure than PBKDF2, which has led to breaches in other password managers.
When you create a vault, Proton Pass generates a 32-byte random vault key. This key is encrypted and signed with your user key, ensuring only you can decrypt the vault key and nobody (not even Proton) can read or create new vault keys. If several users have access to the same vault, Proton Pass will encrypt the vault key with each user’s public user key. This makes it easy to securely share access to vaults.
Once you have access to the vault key, all items in Proton Pass are encrypted using 256-bit AES-GCM.
Item encryption
Each vault can contain multiple items, such as logins, notes, and aliases. When you create a new item, Proton Pass generates a 32-byte random item key. Proton Pass encrypts that item using the newly generated item key, which itself is then encrypted with your vault key. Both the item key and the item data are encrypted using 256-bit AES-GCM.
Whenever you update an item, Proton Pass encrypts the new data using the previously generated corresponding item key. By using individual item keys for each item, Proton Pass lets you share specific items with other users without sharing the vault key, allowing for more fine-tuned access control.
This approach enables Proton Pass to respect the security principle of least privilege by providing the minimum number of cryptographic keys necessary to access only the data shared.
Sharing
The Proton ecosystem already has open-source, publicly audited, and battle-tested secure sharing encryption models for Proton Drive and Proton Calendar, and we’ve leveraged this experience to design Proton Pass. The Proton Pass encryption model enables you to share your vaults with others, and we plan on adding more sophisticated sharing functionalities as Proton Pass evolves. Currently, you must be a vault administrator to share your vault keys.
Sharing encrypted information requires sharing and distributing public keys, which creates the potential for man-in-the-middle (MITM) attacks, specifically the distribution of fake public keys. In addition to user keys, each Proton user has one or more address keys for each email address associated with their account. This address key is a public key linked to a verifiable identity and published in Proton’s Key Transparency system, ensuring they can’t be maliciously modified by an attacker. We’ll share more information about Proton’s Key Transparency system in the future.
If you’re the vault administrator, you can share your vault key and Proton Pass will encrypt it with your recipient’s address key, ensuring only they can access it.
After your intended recipient receives your encrypted vault key, they will validate its signature using your address key. This step verifies that the invitation legitimately came from you. Once the signature has been validated, Proton Pass will encrypt the vault key using your recipient’s user key and store it securely.
Conclusion
Like all Proton services, Proton Pass will be open source upon release. Anyone will be able to consult the source code to verify our security model. As with our other services, Proton Pass will also undergo regular independent security audits and these audit reports will be shared publicly as soon as they are available.
Finally, for interested security researchers, Proton Pass is eligible for Proton’s Bug Bounty program(new window) that offers awards of up to $10,000 for the discovery of bugs in Proton’s software.
This work was conducted by Adrià Casajús, Son Nguyen Kim, Carlos Quintana, Daniel Huigens, and Lara Bruseghini from the Proton identity and cryptography teams.
Secure, seamless communication is the foundation of every business. As more
organizations secure their data with Proton, we’ve dramatically expanded our
ecosystem with new products and services, from our password manager to Dark Web
Monitoring for cr
On the subject of cybersecurity, one term that often comes up is brute force
attack. A brute force attack is any attack that doesn’t rely on finesse, but
instead uses raw computing power to crack security or even the underlying
encryption.
In this a
Section 702 of the Foreign Intelligence Surveillance Act has become notorious as
the legal justification allowing federal agencies like the NSA, CIA, and FBI to
perform warrantless wiretaps, which sweep up the data of hundreds of thousands
of US citi
In response to the growing number of data breaches, Proton Mail offers a feature
to paid subscribers called Dark Web Monitoring. Our system checks if your
credentials or other data have been leaked to illegal marketplaces and alerts
you if so. Often
Your email address is your online identity, and you share it whenever you create
a new account for an online service. While this offers convenience, it also
leaves your identity exposed if hackers manage to breach the services you use.
Data breaches
Our mission at Proton is to help usher in an internet that protects your privacy
by default, secures your data, and gives you the freedom of choice.
Today we’re taking another step in this direction with the launch of our open
source password manage