Security Audit

Password security strength reporting in the Admin Console

End-User Security Audit

In each end-user's vault, the Security Audit screen provides information about the password strength and password reuse taking place. The calculation of password strength and reuse is performed continuously from the user's vault on all platforms including Keeper Desktop, Web Vault, iOS and Android devices.

Keeper's Password "strength" is a calculated score based on the complexity of the password, with a score rating between 0 and 100 according to the below metrics:

Very Weak: < 20 Weak: 20-40 Good: 40-60 Strong: 60-80 Very Strong: 80+

Admin Console Report

To preserve Zero Knowledge, the summary of each end-user Security Audit score is encrypted with the Enterprise Public Key, then stored encrypted in the Keeper Cloud.

When the Admin logs into the Admin Console, the Audit Data is decrypted locally on the Admin Console device and made available for administrators in an aggregated format from the "Security Audit" screen.

The Security Audit screen provides summary and user-level security score information that includes:

  • Record Password Strength

  • Unique Record Passwords

  • Use of Two-Factor Authentication

  • Overall Security Score

For more information on how these scores are calculated, visit the following:

pageSecurity Audit Score Calculation

In addition to Security Score, Keeper also provides a Dark Web scan summary of end-user passwords through the BreachWatch secure add-on.

BreachWatch alerts can be configured in the Advanced Reporting & Alerts module to alert users and Administrators when a password has been found on the dark web.

Commander CLI

The Keeper Commander CLI provides direct access to the audit data and event data, with other advanced capabilities. For more information, see the Keeper Commander reference guide and reporting commands.

Last updated