hum… I think there is a bit of confusion here… unless I am mistaken:
-
An “Open WIFI” (or more precisely “unprotected WIFI”) means that your conversation between your machine and the WIFI Antenna is not encrypted. This means that anyone around you can see each and every bit of information that you send and receive.
-
However, when you use HTTPS, you will anyway encrypt your traffic between your client and the target server (bitwarden in this case). As a result, this should not impact the security of your transaction regardless of the encryption of your wifi stack.
…that being said…
- Some “public networks” which usually are “unprotected wifi” are designed to perform various Man-In-The-Middle attacks (DNS intercepts + SSL termination). As a result “open-wifi” have a bad rep, but in reality the very same attacks are also possible on protected wifi accesses… I noticed this recently while accessing a “business area” in the Paris’s Orly airport. My cell phone gave me a tiny innocuous warning that the wifi was using an “untrusted” certificate proxy. In other words, all my SSL traffic would have been intercepted and decrypted on the fly.
conclusion:
regardless of unprotected or protected, if you are not on a trusted wifi, you should setup a VPN. I personally use when I travel a good old Asus Router with a Merlin firmware at home running the VPN software and a tiny traveling router with a VPN client which all my devices connect to. This is not too hard to setup and give a decent peace of mind.