Asymmetric Cryptography Cipher Support
DevOps makes extensive use of public key cryptography. The most common use cases of this technology are SSH, signing Git commits and sending encrypted emails, but asymmetric cryptography can be used for a great many purposes.
Bitwarden would be an ideal place to store private keys; the secure nature of this platform means that a private key could optionally be stored in an unencrypted format. If a private key is stored in an encrypted format, then Bitwarden could also store the passphrase to decrypt the private key. This would allow developers to store their private keys in the cloud, allowing easy and secure access to them anywhere and at anytime.
Furthermore, a competitor to Bitwarden (LastPass) already possesses this feature, and therefore implementing this capability would help Bitwarden compete in an increasingly crowded market.
A new type of
Cipher would be added to Bitwarden called
This new cipher would have the following properties:
- Private Key
- Public Key
- Valid From
- Valid Until
- Bit Strength
The private key and passphrase fields would be obscured when rendered by a client.
Support for asymmetric key ciphers would be added first to the backend & desktop clients. Other clients would have a lower priority for integration, for the reason that tools like SSH & GPG are used less frequently on mobile, browser and web platforms.
Clients / Repos Affected:
Timeline to completion (estimate):