惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

The Cloudflare Blog
Microsoft Security Blog
Microsoft Security Blog
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
L
LangChain Blog
W
WeLiveSecurity
P
Proofpoint News Feed
月光博客
月光博客
NISL@THU
NISL@THU
L
LINUX DO - 最新话题
Webroot Blog
Webroot Blog
T
Threatpost
Y
Y Combinator Blog
www.infosecurity-magazine.com
www.infosecurity-magazine.com
T
Threat Research - Cisco Blogs
Vercel News
Vercel News
Jina AI
Jina AI
阮一峰的网络日志
阮一峰的网络日志
S
Schneier on Security
J
Java Code Geeks
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
小众软件
小众软件
MyScale Blog
MyScale Blog
N
News and Events Feed by Topic
Stack Overflow Blog
Stack Overflow Blog
有赞技术团队
有赞技术团队
The Hacker News
The Hacker News
Schneier on Security
Schneier on Security
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
Help Net Security
Help Net Security
Recent Announcements
Recent Announcements
S
Security @ Cisco Blogs
C
CXSECURITY Database RSS Feed - CXSecurity.com
S
Securelist
T
The Exploit Database - CXSecurity.com
云风的 BLOG
云风的 BLOG
C
Cisco Blogs
雷峰网
雷峰网
量子位
Google DeepMind News
Google DeepMind News
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
Spread Privacy
Spread Privacy
L
Lohrmann on Cybersecurity
I
Intezer
T
The Blog of Author Tim Ferriss
G
GRAHAM CLULEY
D
DataBreaches.Net
V
Vulnerabilities – Threatpost
P
Privacy & Cybersecurity Law Blog
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
罗磊的独立博客

Blog on 1Password Blog

Why secure-by-design is an incentives problem, with Bob Lord | 1Password NIST and AI agents: 1Password’s approach to agent identity | 1Password Go beyond device health with External Checks in 1Password Device Trust | 1Password Natoma and 1Password help enterprises scale AI securely with governed agent access | 1Password New integrations between 1Password SaaS Manager and EPM | 1Password A first step toward post-quantum security | 1Password RSA 2026: Leading the way to secure agentic AI | 1Password How 1Password is Building a Culture of AI Fluency Through AI Champions | 1Password 1Password vs. Keeper Security: A comparison | 1Password 1Password vs. LastPass: Which is right for you? | 1Password Secure MCP credentials with 1Password and Runlayer | 1Password The next layer of AI security | 1Password Building the next chapter of Go-to-Market in EMEA | 1Password Automating SOC workflows with 1Password Enterprise Password Manager | 1Password Automated Provisioning hosted by 1Password: A Simpler, Smarter Way to Manage Access | 1Password Introducing 1Password® Unified Access: Identity Security for Humans and Their AI Agents | 1Password Bitwarden vs. 1Password: Which password manager is right for you? | 1Password Password Manager for Families, Enterprise & Business | 1Password | 1Password How to wrangle SaaS contract renewals | 1Password Stop trusting consumer browsers with work credentials | 1Password IAM stops at sign-in. Your credentials do not. | 1Password Your digital pit crew: a 10-minute pre-race security checklist | 1Password 1Password Device Trust is coming to EMEA | 1Password The identity transformation: Analyst and CIO insights | 1Password Why now is the moment to join 1Password Go-To-Market | 1Password Identity and Accountability in the Age of AI Agents | 1Password How 1Password secures agent architectures | 1Password 1Password becomes the first global partner to transact through Express Private Offers in AWS Marketplace | 1Password Start Learning on 1Password Academy | 1Password Expanding Programmatic Access to 1Password | 1Password Zero knowledge vs. a malicious server: A look at ETH Zurich’s research | 1Password Agents are making filesystems cool again | 1Password Black History Month employee spotlight: Joseph Ojelade | 1Password 1Password's new benchmark teaches AI agents how not to get scammed | 1Password Streamlining SaaS onboarding and offboarding | 1Password 3 common SaaS Management challenges and how to avoid them | 1Password How 1Password Is Evolving Its Partner Ecosystem | 1Password How to build secure agent swarms that power production-grade autonomous systems | 1Password From magic to malware: How OpenClaw's agent skills become an attack surface | 1Password Solving the unsanctioned SaaS problem | 1Password 1Password and 60 Day Hustle: cybersecurity for small businesses | 1Password Security advisory for AI-assisted browsing interactions with the 1Password browser extension | 1Password It’s incredible. It’s terrifying. It’s OpenClaw. | 1Password Managing the risks of social logins | 1Password What’s the first security tool your small business should buy? | 1Password As AI Supercharges Phishing Scams, 1Password Introduces Built-In Protection | 1Password How to interview with confidence at 1Password | 1Password Five tips for successful SaaS Management | 1Password SaaS Manager | 1Password Why SaaS License Waste Is a Cost and Security Problem | 1Password AI is changing the IDE. With 1Password, security keeps up | 1Password How IT teams can get a handle on shadow IT | 1Password Bringing secure, just-in-time secrets to Cursor with 1Password | 1Password The Chasing Entropy Podcast Season One is in the Books | 1Password Now available via QBS Software: 1Password Enterprise Password Manager – MSP Edition | 1Password The role of credentials in the AI espionage campaign reported by Anthropic | 1Password The hidden offboarding step draining your budget | 1Password AWS and 1Password: Innovation in AI and beyond | 1Password Simplifying credential security on OpenAI Atlas | 1Password From Social Work to Social Impact: Growing at 1Password | 1Password Improving in-page notifications in the 1Password browser extension | 1Password Password Manager for Families, Enterprise & Business | 1Password | 1Password Now available via Renaissance: 1Password Enterprise Password Manager – MSP Edition | 1Password Behind the wheel at Oracle Red Bull Racing | 1Password Securing MCP servers with 1Password: Stop credential exposure in your agent configurations | 1Password What’s new in 1Password Enterprise Password Manager - Q4, 2025 | 1Password Belonging as a catalyst for high performance | 1Password Password habits are worsening, but leaders see a path to passwordless | 1Password A simpler, faster way to unlock 1Password | 1Password Oracle Red Bull Racing Episode 4, CIO Matt Cadieux | 1Password 70% of IT and security pros say SSO is falling short | 1Password 1Password's Phishing Survey: Avoid Holiday Phishing Scams | 1Password Securing the Win | 1Password SaaS optimization: How to maximize value and reduce costs | 1Password The enterprise AI crisis: Unsanctioned tools and unenforced policies | 1Password An Identity Security taxonomy for Agentic AI | 1Password Introducing new .env file support in 1Password environments | 1Password Speed and security: Mark Hazelton on protecting Oracle Red Bull Racing’s most valuable asset – its data | 1Password 1Password for Good: Giving back during cybersecurity awareness month | 1Password Utah Mammoth and Utah Jazz score with identity security | 1Password Oracle Red Bull Racing CEO and Team Principal | 1Password Three signs you need a SaaS Management Platform | 1Password Closing the credential risk gap for AI agents using a browser | 1Password Microsoft and Dropbox password managers are sunsetting: What it means and what to do next | 1Password From hackathon nerves to internship wins: Kavya’s journey at 1Password | 1Password 1Password now available in Comet, the AI-powered browser by Perplexity | 1Password 1Password announces new integration with Zscaler | 1Password Breaking the mold: Why more women should consider a career in sales | 1Password What security leaders need to know about mergers and acquisitions | 1Password Clickjacking: What it means for 1Password users | 1Password AI and security at Black Hat: 5 key takeaways from a security expert panel | 1Password Blog | 1Password Do any CISOs feel lucky? | 1Password How to lead with confidence in the AI era: a conversation with Nancy Wang, VP, Engineering | 1Password New Device Trust Check makes browser extension enforcement easier | 1Password Purpose, performance, and trust: Inside the culture powering 1Password’s next chapter | 1Password Now available on Pax8 Marketplace: 1Password Enterprise Password Manager - MSP Edition | 1Password The security principles guiding 1Password’s approach to AI | 1Password Choosing the right SaaS management platform for your business | 1Password Simplify access reviews with 1Password SaaS Manager | 1Password How great usability tripled Duke University's password manager adoption | 1Password
Next-generation automated provisioning, without compromising zero-knowledge security | 1Password
info@1password.com (Chas Lynch) · 2026-03-17 · via Blog on 1Password Blog

Automating user provisioning sounds simple, until you remember everything that provisioning really touches.

For most SaaS products, SCIM is “just” user and group lifecycle management. Your identity provider calls an API, accounts get created, access is assigned, and offboarding removes it. But for 1Password, provisioning intersects with something far more sensitive: the cryptographic foundation that protects every vault.

1Password is end-to-end encrypted by design. We do not hold your encryption keys and cannot see your vault contents. This provides a powerful guarantee that even if 1Password’s servers were to be compromised, your data would remain unreadable, as the keys required to decrypt it are never accessible to us. 

That model is why customers trust 1Password with their most sensitive credentials, but it also makes automation genuinely hard. After all, how can we automate provisioning inside a zero-knowledge platform, without reintroducing trust in the server?

That is the problem Automated Provisioning hosted by 1Password solves, and it’s why our approach is fundamentally different from other provisioning options on the market.

The hidden tradeoff in “hosted SCIM”

Most hosted provisioning solutions are built on a straightforward assumption: the service performing provisioning can be trusted to manage the system state, distribute keys, and act as an authority. This is what makes many SCIM implementations “easy” to host, but that assumption quickly breaks down in a zero-knowledge system.

If a server can create, hand out, or swap cryptographic keys without independent verification, then clients are ultimately trusting the server as a source of truth. Even if the threat is theoretical, the trust model is real, and even a theoretical gap matters for 1Password.

The problem

Public key cryptography is built around two keys: a private key that must remain secret, and a public key that can be shared freely.

When you share something securely, you encrypt it using the recipient’s public key, and only their private key can decrypt it. The difficulty comes in ensuring that the public key received actually belongs to the person in question.

In most systems, the server is meant to be the source of truth. However, it’s entirely possible that a malicious or compromised server could be used to swap in a fake public key and trick a user into encrypting data to be shared with an attacker instead of the intended recipient. The attacker could decrypt it, read it, then re-encrypt it for the real recipient so everything still “works.”

However theoretical that threat may be, for a product built on the principle of not requiring trust in our servers, we wanted to eliminate the risk as completely as possible.

Closing the gap with Public Key Verification and the Account Trust Log

Public Key Verification (PKV) is our answer to this threat. PKV gives every 1Password client the ability to independently verify that a public key belongs to its intended owner, and it’s powered by a new foundation called the Account Trust Log.

The Account Trust Log works as a cryptographically verifiable history of an account’s keys and trust decisions:

  • Every time a key is created or updated, that event is recorded as a new entry

  • Each entry includes the operation performed, a hash representing the account’s “world state,” and a cryptographic signature from an authorized actor

  • Each entry links to the previous entry, forming a tamper-evident chain

  • If a link is altered, the chain breaks and tampering is detectable

Now, clients and admins can verify key authenticity against the Trust Log, meaning that 1Password clients don’t have to trust our servers alone to distribute public keys correctly, and our servers can’t be used even theoretically to compromise public keys. 

This marks a meaningful shift in our security model, and an essential step toward enabling automation at scale.

Why provisioning is harder in 1Password

Historically, the way to preserve zero-knowledge and still support automated provisioning was to push sensitive operations into customer-controlled infrastructure. In 1Password, provisioning is tied to the creation and management of key material that enables secure access to encrypted vaults. This is why we built the 1Password SCIM Bridge, a self-hosted service that lives inside client environments and keeps sensitive cryptographic operations isolated from 1Password.

Unfortunately, 1Password SCIM Bridge can also come with real operational costs, and customers told us they wanted the same privacy guarantees without having to own the operational burden.

The privacy paradox, solved with confidential computing

End-to-end encryption creates a paradox when it comes to letting 1Password EPM do more for clients, since it can see so little of their data.

Automated Provisioning hosted by 1Password resolves that paradox by moving provisioning’s sensitive cryptographic operations into an isolated execution environment built on confidential computing and using secure enclaves, which exists inside of 1Password’s infrastructure, .

In plain terms, the team at 1Password have built a hosted provisioning system where cryptographic operations can be performed. The secrets involved cannot be accessed, inspected, or extracted by 1Password, cloud operators, or anyone with privileged access to the surrounding infrastructure. This is a new architecture designed specifically for automation in a zero-knowledge system.

The enclave, a “genie with boundaries”

At the heart of Automated Provisioning hosted by 1Password is the secure enclave, an isolated compute environment designed to keep sensitive data protected even while it’s being used.

The enclave can perform cryptographic operations needed for provisioning, like generating encrypted key material and preparing account setup flows, but it cannot reveal those secrets to any outside party. For this to work, we also need strong proof that the enclave is running the exact code we intend, and that the rules we designed cannot be silently bypassed.

That is where attestation comes in. Before clients or services trust the enclave, they verify a cryptographic attestation measurement proving the enclave is running the expected, audited code. This makes the environment verifiable, not just isolated.

How Automated Provisioning uses PKV and the Trust Log

Automated Provisioning hosted by 1Password is the first major 1Password feature that brings together:

  • Confidential computing for operator-inaccessible cryptographic execution

  • Public Key Verification for client-side verification of key authenticity

  • The Account Trust Log for a tamper-evident, signed chain of trust

This combination is the core differentiator, and it’s the reason 1Password can host provisioning successfully. 

When your identity provider provisions a new user, this initiates a secure sequence:

  1. Your IdP makes a standard SCIM request to 1Password

  2. The request is processed inside the enclave

  3. Key material is generated and sealed, protected inside the enclave’s boundary

  4. The operation is recorded in the Account Trust Log as a signed entry

  5. The user completes a secure confirmation flow, ensuring only the intended user can activate and claim access

From there, clients can at any time independently verify keys and changes via PKV and the Trust Log. 

Essentially, behind every “add user” action, many cryptographic operations are performed in isolation, recorded in a verifiable history, and designed so that no operator can tamper with or inspect the sensitive parts of the process.

Delegated trust, not implicit server authority

One of the most important design choices we made at 1Password is that Automated Provisioning does not rely on implicit server authority. To enable Automated Provisioning hosted by 1Password, an administrator must explicitly delegate trust to the enclave using a service account, so that it can perform specific actions and write the appropriate entries into the Trust Log. This ensures that automation always remains rooted in an admin’s deliberate, verifiable action, not in “the server can do whatever it wants.”

Additional safeguards that matter in the real world

Automation at scale must assume real-world failure modes, including identity provider compromise and misconfiguration. Automated Provisioning hosted by 1Password includes guardrails designed to reduce blast radius and prevent abuse, including:

  • Trusted email domains, cryptographically signed during setup to block rogue invitations

  • Scoped provisioning controls, so certain critical groups cannot be automatically managed

  • Attested environments, so provisioning actions occur only inside verified enclave code

  • Operator-inaccessible execution, reducing the risk of tampering or inspection

Why this is truly next-generation provisioning

If you already use SCIM elsewhere, it can be tempting to view provisioning as a solved problem. But in a zero-knowledge platform, hosted provisioning isn’t just a matter of integration; it requires essential decisions about security architecture

Automated Provisioning hosted by 1Password is different because it does not ask you to trade privacy for automation. It preserves end-to-end encryption and removes the operational burden of self-hosting by combining:

  • Confidential computing for isolation and operator-inaccessibility

  • Verifiable cryptography through PKV and the Account Trust Log

  • Admin-rooted delegation so automation is accountable and constrained

Most provisioning solutions focus on simplicity by relying on an assumption of centralized trust. We instead committed to building simplicity without centralizing trust.

The key takeaway is that Automated Provisioning hosted by 1Password removes the need to deploy and maintain a SCIM Bridge. Cryptographic operations run inside an isolated, attested secure enclave, and Public Key Verification and the Account Trust Log make key authenticity independently verifiable. Secure automation is made possible by ensuring that it’s kept constrained and accountable through explicit delegation, not server authority.

The result is provisioning that scales without compromising the zero-knowledge model.

1Password becomes an active control surface in enterprise security ecosystems

Automated Provisioning hosted by 1Password, multi-tenancy, and the Users API for Partners, were all made to serve the same goal; they make it easier than ever to deploy 1Password EPM wall to wall. Simplified provisioning, scalable structure, and predictable governance all help enterprises secure every team and workflow, while preserving the usability and zero-knowledge security model that 1Password is known for.

These capabilities mark another step toward what modern enterprises need most: security that scales with the business instead of slowing it down.