Time-Lock for entries

Time-Locked Entries

  • Entries should have the option, to make them un-decryptable until a certain date is reached.

Feature function

  • When adding an entry, the user can check a box for time-locking it.
  • Then calendar and time fields appear.
  • The user chooses a date and time.
  • Until that date, the entry cannot be decrypted.
  • When the entry is opened before the time-lock ends, it will show up as grayed out and a “time-locked until YYYY-MM-DD HH:MM” overlay is visible.
  • Time locks can be extended at any time
  • A Time lock can only reach a maximum of 365 days into the future.

Why the limitation ?

If you accidentally chose the wrong date, you at least only locked yourself out for a maximum of 1 year, and not say, 100 or 1000 years, which is identical to deletion.

The point of this is, that it cannot be canceled. Once the door shuts, you can’t open it, until the expiration date arrives.

@iron_linguini - I’m intrigued by this request. What’s the use-case that sparked this idea?

Reminds me of Do not open 'til Christmas - which I was never good at. :sweat_smile:

1 Like

The usecase is for example interesting for people owning Bitcoin.

You might have a signing device like a Trezor. You make a backup of the recovery seed by storing two paper copies of the 24 words in two secure locations. Let’s say your bank safe deposit box and your aunts house.
But you don’t want your aunt or anybody visiting her to have access to the funds, so you add a passphrase, which is an arbitrary string being a 25th word.
You might want to store this passphrase in a time-locked bitwarden entry, for at least two reasons:

  1. To keep yourself from panic selling. This might be very important for tax purposes, to really sit out at least 1 year.
  2. To mitigate against physical attacks. If someone gets a hold of the seed, then you are still physically incapable of cooperating with the attacker. Similar to the function of multi-signature arrangements like https://keys.casa offer.

Very interesting! Thanks for the description.

I guess that if the time looks - as requested - could also be extended at any time it could be used as a dead man’s switch.

I don’t quite get that. How would can that function like a dead man’s switch?

If someone got access to your vault you could still hide some things from that person by simply extending the time lock on a regular basis; unless you cannot do that anymore.

So you share login credentials with someone you trust and as long as you’re alive, you extend the lock? I guess that would work as a dead man switch. But so would having a dedicated regular entry where you periodically write the latest lottery numbers or bitcoin block hashes into. Something you couldn’t have known in advance.

But: A dead man switch functionality would be cool. I’m going to search the forums later and if I don’t find anything, I’ll post something like this (unless you do it first ;)):

Dead Man Switch:
When nobody logged into the BitWarden account for n days, this secondary password can be used to login.