Software:NordPass

From HandWiki

NordPass is a proprietary password manager launched in 2019. It is meant to help its users to organise their passwords and secure notes,[1] keeping them in a single place — an encrypted password vault.[2] This service comes in both free and premium versions, though the free version lacks much of the paid functionality like multi-device login.[3]

NordPass
Nordpass.png
TypePassword management service
Launch date2019; 5 years ago (2019)
Platform(s)
Operating system(s)
StatusActive
Websitenordpass.com

NordPass is a cross-platform application available on Windows, macOS, Linux, Android, and iOS. It also offers browser extensions on Google Chrome, Mozilla Firefox, Microsoft Edge, Brave, Opera, and Safari.[4]

History

NordPass was developed by the same cybersecurity team [5] that created NordVPN, a VPN service[6] provider.[7]

Security features

  • NordPass is built with the ChaCha20 encryption algorithm specifically the XChaCha variant.[8]
  • NordPass has zero-knowledge architecture,[9] meaning that passwords are encrypted on the user's device and only then stored in the cloud. This way, NordPass cannot view, edit, or in any other way manage users’ passwords.[10]
  • An encrypted vault acts as a digital safe where users can store login credentials, secure notes, and credit card details.[11]
  • The Master Password serves as the key that unlocks the encrypted vault.[12] Master Password protects the user's passwords,[13] but it's up to the user to make it strong.[14]
  • NordPass provides two-factor authentication (2FA).[15] It supports multiple authentication apps, including Google Authenticator, Duo, and Authy.
  • In its latest release it includes FIDO U2F support. This means that it will now work with YubiKey and other third party security keys.[16] Though this protection is embedded at the service login instead of the app which is a weakness.
  • NordPass provides a Secure Password Sharing Feature which allows for the secure sharing of passwords between NordPass users.[17]
  • NordPass can scan data breaches for password leaks.[18]
  • NordPass can identify weak, reused, or old passwords which it divides into Weak, Reused, and Old.[19]

An independent cybersecurity firm, Cure53, in February 2020 conducted an audit and confirmed the security of NordPass password manager.[20]

NordPass is based in Panama, which has no mandatory data retention laws and does not participate in the Five Eyes or Fourteen Eyes alliances.[21][22] This means that the company[23] isn't required by law to keep logs or share them with governments.[24]

Reception

NordPass is a relatively new player in the password manager market[25] and was named “new kid on the block”.[26] Some tech review sites have noticed that it still lacks some features.[27] According to PC Mag, “it offers very few advanced features such as form-filling, folders, security monitoring, or 2FA key support”.[28]

NordPass has conducted a number of research studies.[29][30][31] NordPass has also been mentioned on many influential tech websites, such as Wired, Forbes , Business Insider, and TechRadar.

References

  1. "You Need a Password Manager. Here Are the Best Ones" (in en-us). Wired. ISSN 1059-1028. https://www.wired.com/story/best-password-managers/. Retrieved 2020-10-12. 
  2. "What Is a Password Vault? - Definition from Techopedia" (in en). http://www.techopedia.com/definition/31415/password-vault. 
  3. "NordPass Review | NordVPN's fully featured entry into the password manager world" (in en). https://proprivacy.com/password-manager/review/nordpass. 
  4. "Browsers, which support NordPass" (in en-US). https://support.nordpass.com/hc/en-us/articles/360002376957. 
  5. "NordVPN Officially Releases Its New Password Manager NordPass" (in en). https://www.prnewswire.com/news-releases/nordvpn-officially-releases-its-new-password-manager-nordpass-300966182.html. 
  6. Zhang, Zhensheng; Zhang, Ya-Qin; Chu, Xiaowen; Li, Bo (2004-05-01). "An Overview of Virtual Private Network (VPN): IP VPN and Optical VPN" (in en). Photonic Network Communications 7 (3): 213–225. doi:10.1023/B:PNET.0000026887.35638.ce. ISSN 1572-8188. https://doi.org/10.1023/B:PNET.0000026887.35638.ce. 
  7. Marshall, Adam (October 5, 2020). "The best VPN service 2020" (in en). https://www.techradar.com/vpn/best-vpn. 
  8. "XChaCha20 Encryption" (in en). https://nordpass.com/features/xchacha20-encryption/. 
  9. "Zero-Knowledge Encryption: Extra Password Safety" (in en). https://nordpass.com/features/zero-knowledge-architecture/. 
  10. "NordPass Review | NordVPN's fully featured entry into the password manager world" (in en). https://proprivacy.com/password-manager/review/nordpass. 
  11. "NordPass Review 2020: Is NordVPN's Password Manager OK?" (in en). https://www.safetydetectives.com/best-password-managers/nordpass/. 
  12. "Master Password" (in en). https://nordpass.com/features/master-password/. 
  13. "Master Password - an overview | ScienceDirect Topics". https://www.sciencedirect.com/topics/computer-science/master-password. 
  14. "Master Password" (in en). https://nordpass.com/features/master-password/. 
  15. "What you need to know about 2FA" (in en). https://nordpass.com/blog/two-factor-authentication/. 
  16. "Security Key" (in en). https://nordpass.com/features/security-key/. 
  17. "Secure Password Sharing" (in en). https://nordpass.com/features/secure-password-sharing/. 
  18. "Password Breach Report". https://nordpass.com/features/password-breach-report/. 
  19. "Password Health Report" (in en). https://nordpass.com/features/password-health-report/. 
  20. ""Cure53" Audited NordPass and Verified Is Robust Security | TechNadu" (in en-US). https://www.technadu.com/cure53-audit-nordpass-verify-robust-security/101714/. 
  21. Gewirtz, David. "Inside a VPN service: How NordVPN conducts the business of Internet privacy" (in en). https://www.zdnet.com/article/inside-a-vpn-service-how-nordvpn-conducts-the-business-of-internet-privacy/. 
  22. "Five Eyes, Nine Eyes, and 14 Eyes (In-Depth Explanation)" (in en-US). https://restoreprivacy.com/5-eyes-9-eyes-14-eyes/. 
  23. Gewirtz, David. "Inside a VPN service: How NordVPN conducts the business of Internet privacy" (in en). https://www.zdnet.com/article/inside-a-vpn-service-how-nordvpn-conducts-the-business-of-internet-privacy/. 
  24. "How can I protect myself from government snoopers?" (in en). 2016-11-24. http://www.theguardian.com/technology/askjack/2016/nov/24/how-can-i-protect-myself-from-government-snoopers. 
  25. "Password Management Market Size, Share | Industry Report 2018-2025" (in en). https://www.grandviewresearch.com/industry-analysis/password-management-market. 
  26. "NordPass Review - New Kid on the Block - Updated 2020" (in en). https://www.cloudwards.net/nordpass-review/. 
  27. "NordPass Premium" (in en-gb). 2020-03-17. https://uk.pcmag.com/password-managers/124115/nordpass-premium. 
  28. "NordPass Premium Review" (in en-US). https://www.pcmag.com/reviews/nordpass-premium. 
  29. Fearn, Nicholas (July 29, 2020). "10 billion records, including personal details, exposed by unsecured databases" (in en). https://www.tomsguide.com/news/10-billion-records-exposed. 
  30. Whitney, Lance (September 22, 2020). "How to create a secure username" (in en). https://www.techrepublic.com/article/how-to-create-a-secure-username/. 
  31. Williams, Shannon. "The most popular usernames of all time revealed" (in en). https://securitybrief.co.nz/story/the-most-popular-usernames-of-all-time-revealed. 



Retrieved from "https://handwiki.org/wiki/index.php?title=Software:NordPass&oldid=3469090"