The symmetric encryption cipher used by every credible password manager to protect vault data. AES-256 means 256-bit key length — computationally infeasible to brute-force with any foreseeable technology. Its presence is table stakes; its absence is a red flag.
Read definition →Password Manager Glossary
Security software comes with terminology that matters. These definitions are written for users, not cryptographers — with pointers to which managers have each property verified.
Encryption where only the sender and receiver hold the decryption keys — the service provider holds only ciphertext and cannot read your data even if compelled. The core security guarantee of every credible password manager.
Read definition →The encrypted database that holds your saved logins, secure notes, credit cards, identities, and file attachments inside a password manager. Understanding how the vault is structured, shared, and synced is the foundation for choosing the right manager.
Read definition →A second verification layer that protects your account even if your password is compromised. For password managers specifically, 2FA prevents an attacker who knows your master password from accessing your vault without the second factor.
Read definition →The property whereby the password manager's provider mathematically cannot read your vault, even if compelled by a court order or breached by an attacker.
Read definition →