24 Feb 1Password Uses “Pwned” to Provide Additional Security
A new password management service called 1Password has announced a new feature that will help users choose the most secure password for their accounts.
The company revealed that it will be relying on data from Pwned Passwords to tell users if their chosen password has already been compromised in a breach. The service was developed by Troy Hunt who is known as the creator of breach notification website “Have I Been Pwned”.
Hunt assures that even though he made the pwned passwords downloadable and queryable via an API, they are using a mathematical property called k-anonymity so that passwords won’t get leaked while being validated.
Source: TechCrunch