Welcome to our

Cyber Security News Aggregator

.

Cyber Tzar

provide a

cyber security risk management

platform; including automated penetration tests and risk assesments culminating in a "cyber risk score" out of 1,000, just like a credit score.

LATEST: Keeper Security’s recovery feature

published on 2023-04-28 10:30:59 UTC by Simon Finlay
Content:

Keeper Security, provider of zero-trust and zero-knowledge cybersecurity software, has launched its latest feature, the 24-word recovery phrase.

It is designed to provide Keeper users with protection against emerging threats.

Keeper Vault

A statement said: “The 24-word recovery phrase replaces the current user-customisable security question and answer recovery method. It serves as a break-glass method of recovering a Keeper Vault in the event that a user forgets their master password.

The recovery phrase generates a unique 256-bit AES key that decrypts a copy of the user’s 256-bit AES data key. The data key then decrypts each individual record key, which in turn decrypts each vault record.

Keeper has implemented recovery phrases using the same BIP39 word list used to protect crypto wallets. The word list used in BIP39 is a set of 2,048 words used to generate an encryption key with 256 bits of entropy.

This method of recovery is commonly used in popular bitcoin and cryptocurrency wallets.  Each word in the BIP39 list is carefully selected to improve visibility and make the recovery process less error-prone.

New Feature

“We are thrilled to introduce this revolutionary new feature to our users,” said Darren Guccione, CEO and co-founder of Keeper Security.

“At Keeper, we are committed to providing our customers with the most advanced and secure password management solutions available. The 24-word recovery phrase is just one example of our ongoing investment in new and more robust technologies to counter emerging cyber threats.”

Users who have security questions enabled on their vaults will be prompted to replace their security answer with a strong 24-word recovery phrase. It is important for users to store this recovery phrase in a safe place such as a physical safe, and not on a computer, phone or other device. To recover the account and reset the master password, users must have the recovery phrase and also provide an email verification code. For users with 2FA enforced, they must additionally pass the two-factor authentication step.

Keeper administrators for business and enterprise accounts have the option of disabling account recovery for their users in the role enforcement policy section of the Keeper Admin Console. Account recovery can be used with SSO-enabled accounts, if enforced by the Keeper administrator.

It is important to note that if a user forgets their master password and loses their recovery phrase, they will not be able to access their Keeper vault. Due to Keeper’s zero-knowledge architecture, the Keeper team cannot help recover a lost recovery phrase.

UK INDUSTRY NEWS

Article: LATEST: Keeper Security’s recovery feature - published over 1 year ago.

https://securityjournaluk.com/latest-keeper-securitys-recovery-feature/?utm_source=rss&utm_medium=rss&utm_campaign=latest-keeper-securitys-recovery-feature   
Published: 2023 04 28 10:30:59
Received: 2023 04 28 10:47:10
Feed: Security Journal UK
Source: Security Journal UK
Category: Security
Topic: Security
Views: 0

Custom HTML Block

Click to Open Code Editor