Does rotating encryption key happen locally or on the server?

dangostylver · August 14, 2020, 8:01pm

I changed the master password to my account and also rotated the encryption key too but noticed that it happened very fast. This got me wondering if the encryption keys are rotated on my local computer or on the server.

If it’s done on the server that seems to be a security issue as the server would know the encryption key. If it’s done locally then it’s no issue at all.

Does anyone know if the rotating the encryption key happens locally or on the server?

tgreer · August 14, 2020, 8:39pm

It happens on the server. You’ll have to log out completely of all your clients and log back in to get the new keys.

dangostylver · August 14, 2020, 8:45pm

Is this not a security issue because the encryption key needs to be in plaintext to rotate?

tgreer · August 14, 2020, 8:50pm

Apologies for not being clearer - the swapping happens in the local (web) client, then the data gets sent to the server.

dangostylver · August 14, 2020, 8:51pm

Thanks! I feel better now.