Bitwarden Introduces 'Cupid Vault' for Secure Password Sharing

Bitwarden has launched a new system called 'Cupid Vault' that allows users to safely share passwords with trusted email addresses. Cupid Vault works by allowing users of the free version of Bitwarden to create a 2-person shared vault called an 'Organization'. Other users can access the logins inside the Organization space with credentials assigned by the owner of the account.

Inviting a user (partner, friend, family member) to an Organization can be done by adding their email address as a second member. This way, Bitwarden users can share in a secure way collections of login pairs for media streaming service accounts or other online platforms.

Creating a new Organization (top), setting a Collection (mid), and inviting a user (bot) Source: Bitwarden

Setting up an Organization and creating shared collections is possible by logging into the Bitwarden vault via the web interface. To prevent adversary-in-the-middle enrollment attacks, vault owners can verify through a fingerprint phrase that the intended member is getting access. The shared vault is completely isolated from the personal vault.

Invite to join a Bitwarden Organization Source: Bitwarden

Access to the Organization vault and the secrets it contains can be revoked at any time, and sharing can be configured in both directions. Bitwarden published a detailed guide on how to set up and use Cupid Vault, which explains that ownership of items within a new Organization isn't tied to their creator, as both members can perform editing or deletion actions.

Source: Bitwarden

Bitwarden is a popular open-source password manager that lets users securely store, generate, and autofill passwords and other sensitive information. It's cross-platform, supporting a range of browsers, desktop operating systems, and mobile platforms, and protects stored data using end-to-end encryption.

The new Cupid Vault feature, launched ahead of Valentine's Day, is available at no charge to all users and can be set up through the free plan. However, there's a limit of 2 Collections and 2 users each. Family, Teams, and Enterprise plan users already get multiple users, collections, and granular role-based access control permissions, so Cupid Vault is redundant for paying tiers and shouldn't be confused with the secret-sharing features available to them.

This Valentine's Day launch represents Bitwarden's latest effort to make secure password sharing more accessible to everyday users. While password sharing has traditionally been discouraged by security experts due to the risks of using weak passwords or sharing them through insecure channels, Cupid Vault provides a controlled environment for those situations where sharing is necessary.

The feature addresses a common real-world scenario: couples sharing streaming service logins, families managing shared accounts, or friends accessing joint subscriptions. By providing a secure alternative to writing passwords on paper or sending them through messaging apps, Bitwarden aims to reduce the security risks associated with informal password sharing practices.

For users concerned about security, the fingerprint phrase verification adds an important layer of protection against phishing attempts or man-in-the-middle attacks during the invitation process. This ensures that the person accepting the invitation is indeed the intended recipient, not an attacker intercepting the invitation.

While Cupid Vault is limited to free users with the 2-person restriction, it serves as an entry point for new users to experience Bitwarden's organizational features. Those who find value in the shared vault functionality may eventually upgrade to paid plans for more advanced sharing capabilities with larger groups or teams.

The timing of the launch, just before Valentine's Day, is strategic marketing that positions secure password sharing as an act of digital trust between partners. It's a clever way to introduce security concepts to users who might not otherwise consider using a password manager for sharing purposes.

As password managers continue to evolve beyond simple storage solutions, features like Cupid Vault demonstrate how these tools are adapting to real-world usage patterns while maintaining security best practices. The challenge remains balancing convenience with security, and Bitwarden's approach of providing a secure but limited free tier for sharing appears to strike that balance effectively.