Password security strength reporting in the Admin Console
In each end-user's vault, the Security Audit screen provides information about the password strength and password reuse taking place. The calculation of password strength and reuse is performed continuously from the user's vault on all platforms including Keeper Desktop, Web Vault, iOS and Android devices.
Keeper's Password "strength" is a calculated score based on the complexity of the password, with a score rating between 0 and 100 according to the below metrics:
Very Weak: < 20 Weak: 20-40 Good: 40-60 Strong: 60-80 Very Strong: 80+
To preserve Zero Knowledge, the summary of each end-user Security Audit score is encrypted with the Enterprise Public Key, then stored encrypted in the Keeper Cloud.
When the Admin logs into the Admin Console, the Audit Data is decrypted locally on the Admin Console device and made available for administrators in an aggregated format from the "Security Audit" screen.
The Security Audit screen provides summary and user-level security score information that includes:
- Record Password Strength
- Unique Record Passwords
- Use of Two-Factor Authentication
- Overall Security Score
In addition to Security Score, Keeper also provides a Dark Web scan summary of end-user passwords through the BreachWatch secure add-on.
BreachWatch Secure Add-On
BreachWatch alerts can be configured in the Advanced Reporting & Alerts module to alert users and Administrators when a password has been found on the dark web.
The Keeper Commander CLI provides direct access to the audit data and event data, with other advanced capabilities. For more information, see the Keeper Commander reference guide and reporting commands.