Identity & access
Choose a zero-knowledge manager with strong platform support and auditing.
Must-haves
- Zero-knowledge architecture; local encryption with audited crypto.
- Multi-factor auth (TOTP/passkeys) for the vault.
- Good autofill UX on desktop and mobile; secure sharing.
- Breach monitoring, password health checks, passkey support.
Evaluation tips
- Export/import formats and account recovery options.
- Open-source clients and independent audits where possible.
- Self-host vs cloud: maintenance, threat model, cost.
In brief
Pick a reputable password manager with strong defaults, cross-platform support, and 2FA; enable auto-updates and export backups.
5-minute checklist
- 2FA support (TOTP/U2F/WebAuthn) and device lock integration.
- Zero-knowledge design and audited crypto.
- Usability: browser extensions, mobile autofill, secure sharing.
- Export/backup options and emergency access.
- Company transparency and incident history.