[cobythedog]

> it's unfortunate they needed some independent blogger to write up their auth scheme

That's kind of a odd statement, no?

The information is provided by Bitwarden and easily found, for example:

* https://bitwarden.com/help/what-encryption-is-used/

* https://bitwarden.com/blog/end-to-end-encryption-and-zero-kn...

[mdaniel]

I feel pretty confident is saying that Huy's content is more technical than a blog post about "end to end encryption," and neither hold a candle to the level of specificity in that opvault-design document.

So maybe you found it to be an odd statement, I dunno, but I stand by that it is unfortunate that they needed someone independent person to dive into that level of technical detail

[42jd]

Any password manager worth their salt has a white paper with their security design. Here is Bitwarden’s: https://bitwarden.com/images/resources/security-white-paper-...

[mdaniel]

Thank you for the link

> (c) Bitwarden, Inc. CONFIDENTIAL

well, that's a weird thing to put in a white paper