You might google “SSL Interception”. It is routinely used by enterprise white hats to detect embedded threats.
I understand, as does grb and Nail1684 that only putting half your credential in one vault will defend against vault compromise. We are not arguing that point.
Our claim is that there is still value to TOTP and passkeys even if one chooses to keep the entire credential in a single vault.
These two statements are not in conflict with each other.
I am done with this conversation.
If this is the attack model, please, PLEASE, tell me, how does TOTP or Passkeys protect against this threat, since attacker can simply steal your cookies and URL:s to sign into the pages and services you use? LOL. They dont. So you have no point here.
Also, if your attack model is admins controlling computers, then they might aswell install RAT on the computer and completely steal your Bitwarden vault content once you sign into it. So…?
You are arguing exactly that.
And this is false, as I just told you: If attacker is able to eavesdrop even HTTPS connections, then they can simple steal your cookies once you have signed into the services/pages and have complete access there. And if attacker is the admin, then they can simply install RAT to the computer you are using and steal entire content of Bitwarden vault once you sign into it. So…?
And as sayed earlier: If the vault is compromised either via admin or hacker, then you loose it all and in practice you are in no better or worse position if you hadnt even used 2FA:s and had used just passwords. So why bother using 2FA:s at all if you store them in same place as passwords: If passwords are good and you are not an idiot how you use them, you dont really need 2FA for anything…and if you have 2FA:s and store them in Bitwarden vault they dont help you at all anyway. Its as simple as that. As pointed out numerous times but you have chosen to ignore it.
I am done with this conversation.
Nice way of saying that you dont have any real arguments, as I just pointed out quite clearly. You have absolutely no real arguments. Why? Because you are wrong and Im right, its as simple as that.