Windows is known for its robust security features, which protect users from a wide range of cyber threats. The operating system includes built-in tools such as Windows Defender^[1], which offers comprehensive anti-malware protection, and BitLocker^[2], which encrypts your hard drive to safeguard data. As part of this security suite, Windows also includes a basic password manager—Credential Manager—that allows users and apps to store and manage their credentials within the Windows environment.

This article explores the capabilities of Windows Password Manager, examining how it fits within the broader Windows security framework. We'll also mention third-party password managers you can leverage to boost online security and introduce an effective method of protecting your financial information when transacting online.

Disclaimer: The information in this article is valid as of August 2024. For more up-to-date information, please visit Microsoft's official website.

What Does Windows Password Manager Offer? 

Windows Credential Manager is designed to securely store login credentials for websites, applications, and network resources within the Windows ecosystem. Here are some of its key features: 

• Web Credentials—Windows Credential Manager saves login information for websites visited using browsers such as the now-retired Internet Explorer or Edge in the Internet Explorer mode^[3], allowing for seamless access without the need to enter usernames and passwords repeatedly.
• Windows Credentials—The password manager stores credentials required for accessing network resources^[4] by allowing users to specify the network location or website address for which the credentials are intended. 
• Certificate-based credentials—Windows Credential Manager supports the storage of certificates for certificate-based authentication^[5]. This type of authentication is often used in environments requiring enhanced security, such as corporate networks.
• Generic credentials—The tool can also store credentials for third-party applications that support basic authentication^[6]. This includes login information management for apps or websites that do not fall under web, Windows, or certificate-based credentials.
• Management capabilities—Windows Credential Manager offers a range of management capabilities, including the ability to add, remove, edit, back up, and restore stored credentials.

How To Use Windows Credential Manager

Users can access Windows Credential Manager  in multiple ways, including: 

1. From the Control Panel, by clicking on User Accounts and then on Credential Manager
2. From the Start menu, by typing "Credential Manager" and selecting it from the search results
3. From the command prompt, by typing "control.exe keymgr.dll" and pressing the enter key
   ‍

From there, users can choose either Web Credentials or Windows Credentials to view the credentials they have stored. Users don't have the option to add Web Credentials, but they can add Windows, certificate-based, and generic credentials. 

Users can edit or remove credentials by clicking on them and choosing the appropriate option. The options to back up or restore credentials are visible at the top of the list of credentials. 

Top Password Managers for Windows

Windows users can easily access password managers with more security and password management features. Those who want to remain in the Windows ecosystem can opt for Edge's password manager, for example. Chrome, Firefox, and even Opera GX have password managers of their own that may fit some users' needs better. Users can also access Samsung Pass on supported PCs or install Apple's password manager on their Windows computers for cross-platform password management. 

If they want even more features and better cross-platform or cross-browser support, Windows users can choose standalone password management solutions such as:

1. RoboForm
2. Dashlane
3. 1Password
4. NordPass
5. Keeper 
6. Bitwarden 

RoboForm

RoboForm's Windows app gives users offline access to passwords, supports Windows Hello, and facilitates logging into Windows applications. 

RoboForm provides secure password sharing with other RoboForm users. The password manager features a master password and two-factor authentication (2FA) with one-time passwords for an added layer of security, ensuring that only authorized users can access stored credentials.

Dashlane 

Dashlane doesn't have a dedicated Windows app, but Windows users can still access and use its web app on Windows thanks to its Chrome, Firefox, and Edge browser extensions. 

The password manager offers Dark Web Insights, a feature that alerts users if their information has been involved in website compromises. Dashlane also provides a Password Health score, which evaluates the strength of stored passwords and suggests improvements. Users can benefit from a built-in VPN and a digital wallet for storing payment card details.

1Password

1Password's Windows app comes with password management features such as easy sorting, a favorite- and tag-based organization system, and the ability to create custom groups of vaults. It also supports Windows Hello for access control to the app.  

1Password supports two-factor authentication (2FA) and can also serve as an authenticator for websites that support this type of authentication. All the data in user vaults is end-to-end encrypted using keys only the user knows to ensure maximum security. 

NordPass

NordPass' Windows app users can easily access the password manager's features, such as a password generator for creating strong passwords. They can also use the Data Breach Scanner to monitor credential compromises and the Password Health Checker to ensure their passwords are strong and not reused.  

NordPass features a zero-knowledge architecture, which ensures that only users can access their encrypted data. The service uses XChaCha20 encryption, offering a high level of data protection, and it supports biometric authentication for quick and secure access. 

Keeper 

Keeper offers its Windows app users multiple ways to set up 2FA, including time-based one-time passwords via Google and Microsoft Authenticator and physical keys such as YubiKey. The password manager also supports a master password, so users have to remember only one password to access all the other ones.

Keeper's autofill feature helps users by filling out their credentials instead of them. Keeper also allows users to grant trusted individuals emergency access to their vaults, and it has an offline mode that lets users store their vaults locally. 

Bitwarden

Bitwarden's Windows app supports adding more than one account, helping users separate their private and work-related credentials. The app allows users to unlock it with biometrics via Windows Hello and create account-specific security settings. 

Bitwarden uses end-to-end encryption with a zero-knowledge architecture, ensuring only users can access their data. The password manager supports secure password sharing, allows users to utilize passkeys that make logging in seamless, and has a password and username generator.   

Are Windows Password Managers Secure?

Secure password managers for Windows are readily available, with some having free plans that let you try them out before fully committing. A reputable Windows password manager can do more than keep your passwords safe—it can also be entrusted with other valuable information, such as your payment card numbers. 

You should be aware, however, that hackers often target your sensitive information in places where password managers can't protect them. For example, hackers may try to access websites where you use your payment details—online stores or subscription services—to steal them. As a customer, you have little control over these platforms' security measures.

However, you can leverage virtual cards to protect your financial data when making online purchases. Virtual cards are unique card numbers you can use at checkout, shielding your actual payment information from potential thieves. For industry-grade security measures and customization options, consider an independent provider like Privacy. 

Use Privacy Cards To Protect Financial Information

If you have a debit card or bank account, you can link it with Privacy and generate virtual cards for different online purchases. When you shop online with a Privacy Card, merchants can only store the virtual card's details and not your actual card numbers, helping reduce the risk of unauthorized access to your underlying financial information. 

As a PCI-DSS-compliant service provider, Privacy uses rigorous security measures similar to those employed by banks. These measures include AES-256 encryption to store sensitive information and real-time alerts for every successful or attempted transaction, which can help you spot and respond to potentially unusual activities.

Additional safeguards Privacy employs to reduce the risk of data exposure are:

• Regular cybersecurity audits—Privacy undergoes regular audits by reputable third-party organizations, helping verify compliance with stringent security standards and ensuring continuous improvement of security measures.
• Adherence to OWASP guidelines—Privacy adheres to industry best practices recommended by the Open Web Application Security Project (OWASP), including secure development practices.

Privacy Card Types and Features

With Privacy, you can generate three types of virtual cards:

You can set spending limits on Privacy Cards, and Privacy will block any transaction that exceeds the set limit. This feature can protect you from unexpected charges by sneaky merchants.

Privacy also allows you to pause or close your virtual cards at any time, blocking further charges to your Privacy Cards. This feature helps reduce the risk of accidental charges, like those that might happen during and after unsubscribing from subscription services.

Convenience Features

Privacy offers several features to streamline your virtual card management:

• 1Password integration—You can save and autofill your virtual card details within the password manager's browser extension. This feature reduces the need for manual data entry, streamlining online shopping without compromising security.
• Mobile app—Available for iOS and Android, the Privacy App lets you create, view, and use your virtual cards from your smartphone.
• Browser extension—The Privacy Browser Extension supports Firefox, Chrome, Microsoft Edge, and Safari (or Safari for iOS for smartphone users). You can generate and autofill virtual card details directly within your browser.
• Card Notes—This feature allows you to add custom notes to each virtual card, which can help you keep track of when and where your cards have been used.
• Shared Cards—You can share your Privacy Cards with friends and family without compromising your primary payment details.

How To Get Started With Privacy

To get a Privacy Virtual Card, follow these four steps:

1. Visit the Privacy website and create an account
2. Verify your identity
3. Link your bank account or debit card to your Privacy account
4. Request and generate your first Privacy Card
   ‍

Privacy has four plans you can choose from:

Privacy Cards are available to U.S. residents aged 18 and over with bank accounts at U.S. banks or credit unions. These cards can be used with any merchant that accepts Visa^® and Mastercard^®.

References

^[1] Microsoft. https://www.microsoft.com/en-us/windows/comprehensive-security?r=1, Sourced August 17, 2024

^[2] Microsoft. https://learn.microsoft.com/en-us/windows/security/operating-system-security/data-protection/bitlocker/, Sourced August 17, 2024

^[3] Microsoft. https://answers.microsoft.com/en-us/microsoftedge/forum/all/saved-passwords-internet-explorer-mode/b7e28853-dfff-443b-9932-8683ec9a7d0b, Sourced August 17, 2024

^[4] Microsoft. https://learn.microsoft.com/en-us/windows/security/identity-protection/credential-guard/considerations-known-issues?toc=%2Fwindows-server%2Fsecurity%2Ftoc.json&bc=%2Fwindows-server%2Fbreadcrumbs%2Ftoc.json#saved-windows-credentials-considerations, Sourced August 17, 2024

^[5] Microsoft. https://learn.microsoft.com/en-us/windows-server/security/windows-authentication/credentials-processes-in-windows-authentication#BKMK_CertificatesInWindowsAuthentication, Sourced August 17, 2024

^[6] Microsoft. https://learn.microsoft.com/en-us/windows/security/identity-protection/credential-guard/considerations-known-issues#saved-windows-credentials-considerations, Sourced August 17, 2024

‍