Internal note: Notify of changes
Overview
This section describes the technical and security architecture of Dashlane products.
It is organized so readers can either follow it end to end or jump directly to the sections most relevant to their role. Each chapter includes a summary for quick orientation.
- Chapter 1 – Executive summary
- Chapter 2 – Securing the enterprise: Explains how Dashlane fits into a modern enterprise security stack and how it mitigates common credential-based attack vectors.
- Chapter 3 – Architecture overview: Details Dashlane’s zero-knowledge architecture, encryption model, device trust, communication security, and use of confidential computing.
- Chapter 4 – Credential security in detail: Walks through core features of Dashlane: authentication flows, vault encryption lifecycle, multi-factor authentication, account recovery, secure sharing, and local data handling.
- Chapter 5 – Enterprise Features: Covers SSO, SCIM provisioning, role-based access control, activity logging and auditing, extension and policy deployment, APIs, and proactive risk-reduction capabilities such as Credential Risk Detection, Risk Alerts & Notifications, and AI Phishing Alerts.
- Chapter 6 – Phishing resistance: Focuses on passkeys, passwordless authentication, FIDO2 security keys, and platform-level protections against phishing.
- Chapter 7 – Attack scenarios and threat model against Dashlane: Analyzes realistic attack scenarios and contrasts Dashlane’s architecture with more traditional approaches.
- Chapter 8 – Security operations: Describes vulnerability management, incident response, bug bounty, penetration testing, and continuous improvement practices.
- Chapter 9 – Compliance & certifications: Summarizes Dashlane’s certifications, privacy commitments, and support for enterprise compliance.
Credential-based attacks remain one of the most significant enterprise security threats. Dashlane is an enterprise-grade credential security platform designed to protect the entire lifecycle of credentials across your workforce, strengthening security, supporting compliance, and reducing risk exposure.
Dashlane provides a secure, encryption-based cloud storage solution, built on what we call a zero-knowledge architecture. Our technical design ensures only the user, not Dashlane or any third party, can decrypt their vault. Even if Dashlane’s infrastructure is compromised, attackers should not be able to access stored credentials or secrets. The platform combines device-level encryption and cloud secure enclaves to protect data at rest, in transit, and in use.
Dashlane’s security philosophy is grounded in one principle: Data must remain secure under all circumstances. Even if infrastructure, devices, or internal environments are compromised, our zero-knowledge architecture ensures vault data stays protected. We continuously evaluate and refine our threat model to defend against the most relevant attack vectors: application vulnerabilities, compromised devices, server attacks, internal IT breaches, and insider threats.
Through our secure-by-design approach, Dashlane embeds security into every phase of development. Formal threat modeling, code reviews, continuous third-party testing, and an active HackerOne bug bounty proactively strengthen defenses. Oversight from our internal Risk Committee ensures transparency, compliance, and continuous risk management at the highest level. Together, these practices enable enterprises to trust Dashlane as a platform that reduces exposure, maintains usability, and aligns with modern security and compliance standards.
For enterprises, Dashlane integrates seamlessly with existing identity and access management (IAM) frameworks through single sign-on (SSO) and SCIM provisioning. Administrative controls, role-based policies, detailed activity logs, and secure sharing empower IT and security teams to manage credentials at scale while giving employees flexibility to collaborate securely.
Download our “Security at a glance” one-pager
Download the PDF version of Dashlane's Security Principles & Architecture