The first open-source security ecosystem that belongs to you – not a cloud, not a corporation. A password manager with a single, auditable Rust core.
Your passwords sit in foreign clouds. 2FA is so annoying that you turn it off. And AI generates passwords with only 27 bits of entropy.
LastPass hack 2023: Millions of vaults compromised. Whoever hosts your data controls it.
Find your phone, open the app, type the code – 50% of users disable 2FA again. Understandable.
Study: ChatGPT generates only 27 bits of entropy instead of 98 bits. Patterns instead of randomness – crackable in under an hour.
1Password, Ledger, Dashlane – closed source. You have to trust instead of verify.
A single Rust core – no reimplementation per platform. Auditable, memory-safe, blazing fast.
Chrome, Firefox, Safari, Edge. Auto-fill with one click – password and TOTP simultaneously.
AvailableWindows, Linux, macOS via Tauri. 20 MB instead of 200 MB. System tray, hotkeys, auto-clear.
In DevelopmentFor admins and developers. Pipes, scripting, SSH agent – native Rust.
AvailableAndroid auto-fill, iOS QuickType. Native Rust core via UniFFI – no React Native.
PlannedOur vision: A physical security companion with display and FIDO2. More details under Vision.
VisionNot one. Not two. Seven unique selling points that make PluriKey the first truly complete security platform.
Cryptographically secure random generator directly in the Rust core. No patterns, no bias – true entropy for every password.
Your vault belongs to you – on your device. Sync only when you want: P2P, self-hosted, or completely offline.
Synchronize your vault directly between devices – encrypted, versioned, without middlemen. Or: self-hosted, air-gapped, local.
Distribute your master key among 4 trusted people. 2 are enough for recovery – no single point of failure.
Your AI needs credentials? PluriKey provides them – with time limits, mandatory justification, and complete audit trail.
Every action is logged in a tamper-proof hash chain. Compliance-ready for SOC2, ISO 27001, GDPR.
Core, extension, server – everything open source and auditable. Check the code, verify the crypto. No trust required.
PluriKey thinks security further – beyond software. We are exploring how a physical hardware companion could take passwords, FIDO2, and entropy generation to a new level.
Honest comparison. Green checks only for actually available features.
| Feature | 1Password | Bitwarden | KeePass | Ledger | PluriKey |
|---|---|---|---|---|---|
| Open Source Core | ✗ | Partial | ✓ | ✗ | ✓ Complete |
| Cloud-Free by Default | ✗ | ✗ Paid | ✓ Complex | ✗ | ✓ 4 Options |
| FIDO2 / Passkeys | ✓ | ✓ | ✗ | ✗ | ✓ |
| KI-Credential Management | ✗ | ✗ | ✗ | ✗ | Unique * |
| 2-von-N Threshold Recovery | ✗ | ✗ | ✗ | ✗ | ✓ 2-of-4 |
| Hash-Chain Audit Trail | ✗ | ✗ | ✗ | ✗ | ✓ |
| Price (yearly) | 36 EUR/Jahr | 10 EUR/Jahr | Kostenlos | 79 EUR (one-time) | Free * |
* In development or planned. See Roadmap for current status.
Transparency matters to us. Here you can see exactly what's done, what we're working on, and what's planned.
AES-256-GCM vault, HKDF key derivation, age encryption, CLI, CSPRNG – all in Rust.
Chrome & Firefox extension with auto-fill, password generator, TOTP, 7 themes, vault browser.
Native desktop app for Windows, Linux, macOS. System tray, hotkeys, biometric unlock.
Exploring an open-source hardware companion for physical security and FIDO2.
Android & iOS with native Rust core via UniFFI. Auto-fill service, biometrics, offline vault.
Multi-user vault sharing, peer approval workflows, and secure credential management for AI agents.
Additional security features and integrations based on community feedback and demand.
Open source is free. Premium features are fairly priced.
* Premium features will become available as each platform is completed.
Every line of code is public. Check the core, audit the crypto, verify the firmware.
Memory-safe, auditable, blazing fast
Browser integration, fully open source
Self-hosted server, CLI tools, all APIs open
Sync, crypto, audit – documented & open
Start for free with the browser extension – open source, local, secure. No cloud needed.