I had found it a big pain to have to sign in each times I shut down my browsers. Especially with my longish pass-phrase. A PIN had to be long and complex, too, to defeat hackers, right?
My PC is in a private space – I am the only one ever to have access to it.
My choice above to never time-out will still give me decent security, correct? My diverse passwords are still encrypted and kept remotely?
Thanks from a new user who really likes the program
I would recommend simply to use the lock with PIN option on a private computer such as you describe. Set the PIN at 8-9 digits and make sure the PIN digits are unique and not something you use elsewhere at all.
One thing many users don’t know is that the PIN option only allows for 5 attempts entered incorrectly. If an adversary starts entering random PIN trying to guess they only get five mistakes and the vault is completely logged out. Is someone really going to guess your 9 digit PIN in five guesses ----- > NO.
You may be the only person with physical access to your device, but you should probably consider the possibility that an attacker could gain access to your device via malware.
Based on an analysis I did in another thread, your locally stored vault should be adequately protected using a PIN that consists of a random 9-digit numerical code, or an alphanumeric string consisting of 6 randomly generated characters.
I think it does. If you were a high threat targetted individual then you wouldn’t be using Windows .
The issue with setting your timeout to Never is that the vault’s encryption key is stored on your device but I think you’re OK provided you keep your device “properly protected” and that ofcourse is the debatable point.
I keep my PC encrypted and I regard that as “properly protected”. I don’t think a guy who breaks into to my house will be skilled in decryption techniques.