Dashlane launches Confidential SSO powered by AWS Nitro Enclaves
Dashlane has unveiled an integration of AWS Nitro Enclaves into its security architecture, starting with the launch of Dashlane Confidential SSO in public beta.
Leveraging AWS Nitro Enclaves to create isolated computing environments to further protect and securely process highly sensitive data, this single sign-on (SSO) integration for businesses is the first release in a series of breakthrough security features planned over the coming months.
While the combination of Dashlane and SSO already ensures reliable protection of cloud-based credentials in the workplace, the new configuration of Dashlane Confidential SSO removes layers of complexity in deployment, offering a seamless integration with any SAML 2.0 (Security Assertion Markup Language) Identity Provider, all while maintaining the privacy of users’ data.
The solution relies on confidential computing through the use of AWS Nitro Enclaves—fully isolated virtual machines, hardened, and highly constrained. These secure environments completely replace the need for complex customer configurations that have been required in order to uphold Dashlane’s zero-knowledge encryption standards.
In this approach, Dashlane Confidential SSO allows for an easy integration with an organization’s Identity Provider (for example, Okta, AzureAD, JumpCloud, or Google Workspace), not only removing the friction of hosting a separate encryption service but also leveraging cutting-edge technology to uplevel Dashlane’s zero-knowledge approach to security.
“Confidential computing is a new paradigm in digital security and a cornerstone in addressing the ever-evolving threat landscape,” says Frederic Rivain, CTO at Dashlane.
“The launch of our Confidential SSO is monumental—it is the first of several applications leveraging AWS Nitro Enclaves that we plan to unveil this year, and it also embodies our commitment to applying pioneering technology to deliver the most secure solutions for our customers without taxing them on convenience,” Rivain added.
“AWS provides secure and reliable infrastructure that Dashlane relies on as a business built on customer trust,” says Arvind Raghu, Principal Specialist, Amazon Elastic Compute Cloud (Amazon EC2), AWS.
“By leveraging AWS Nitro Enclaves, Dashlane is bringing the high-level security of confidential computing to their customers of all sizes to safeguard credentials,” Raghu continued.
With Dashlane Confidential SSO, only a valid SSO user has access to their key—it allows employees to quickly access their vaults with the same credentials they use for other professional apps in their workplace and empowers admins to support adoption across the organization with ease.
“Since we integrated Dashlane’s Confidential SSO, our business and team members can easily access Dashlane along with our other work applications,” says one beta customer, an IT Consultant at a managed service provider.
“The deployment experience was seamless, allowing us to get our customers up and running quickly, making it very scalable for our team. Given the extra focus around the security of password managers these days, this was a top concern I was hearing from my customers—data privacy and security are of utmost importance to us, and Confidential SSO leverages confidential computing for a high level of security. This complements other areas of Dashlane’s product and gives us peace of mind that our information is protected,” IT Consultant continued.
Dashlane plans to integrate confidential computing throughout its product suite, beginning with beta release of Confidential SSO. Over the coming months, Dashlane will share updates to its roadmap, including applications of AWS Nitro Enclaves for its passkey solution, as well as a generalized, Master Password-less system to protect customer data.
Researchers and developers interested in vetting Dashlane’s confidential computing system will also be able to access a majority of the source code through GitHub later this summer as part of the company’s recent push into greater transparency.