Blaze Password Manager
Get Control of Password Compliance
Get Blaze Password Manager
Blaze Password Manager
Blaze Password Manager gives IT staff a practical way to enforce secure password policy that is convenient for employees, works with mobiles, and helps with cybersecurity insurance premiums.
To overcome the challenge of ensuring compliance with secure password policy across an organisation, Blaze has partnered with Nord Security, one of the world’s most trusted cybersecurity brands and creators of NordVPN. Blaze Password Manager is an intuitive and easy-to-use password manager for businesses and individuals that is based on Nord Security’s NordPass technology.
Blaze Password Manager eases the hassle for end-users of using multiple long and complex passwords to access online applications and services, while IT departments can ensure that password policies and access security procedures are complied with across their organisation.
Accounts can be logged into in seconds, sensitive data can be securely shared with colleagues, and payments can be efficiently backed by the highest standard of cyber secure technology.
Structurally, Blaze Password Manager includes an Admin Panel (a platform where you can invite and manage your users), NordPass applications (desktop and mobile), and the NordPass browser extension.
Company-wide Password Security
In the digital age when cyber attacks on companies number in the millions, Blaze Password Manager provides employees with a secure and easy-to-use platform where they can store, access, and share work credentials. Additionally, solution Owners and Admins can manage users and the security of the business environment through a single pane of glass.
Cyber Threat Prevention
To keep one step ahead of a security breach, built-in security tools include Password Policy, Password Health, Data Breach Scanner, Company-wide settings, User Activity Log, Single Sign-On, and User Provisioning, that enable organisational security and significantly lower the risk of a breach.
Ensuring Compliance Across the Business
Blaze Password Manager offers wide range of benefits (for both end-users and IT management) to encourage use across the business. The service is:
Blaze Password Manager eliminates time wasted remembering and resetting account information so that you can focus on meaningful and productive work.
Get value for money with 24/7 support, a simple-to-use interface, and a suite of advanced security features at a competitive price. No hidden costs.
- Easier to Use
On the cutting edge of faster and safer technology, Blaze Password Manager uses the XChaCha20 encryption algorithm and benefits from machine learning for the autofill function.
Blaze Password Manager’s end-to-end encryption and zero-knowledge architecture ensure the highest standard of privacy and security for your business. NordPass, the technology behind Blaze Password Manager, is ISO 27001 and SOC 2 Type 1 certified and independently audited by Cure53.
Blaze Password Manager helps businesses comply with the strictest global cybersecurity standards. Beyond password management, Blaze Password Manager decreases overall cyber risk with advanced features
For senior leadership teams, deploying Blaze Password Manager across the business ensures that the whole organisation can benefit:
Individuals can access critical information anywhere, at any time (subject to access policy). There is unlimited end-to-end encrypted storage of credentials, credit cards, personal information, and confidential notes. Files can be organized and securely accessed across devices.
Efficiency: Credentials as well as personal and payment information can be saved with one click and then populated automatically whenever and wherever users need them.
Use of strong passwords can be ensured across the business, without encouraging the recording of manual, insecure reminder notes by end-users. Sensitive data can be safeguarded with advanced security settings and robust data breach detection.
Shared access between teams makes collaboration easy. Make sharing credentials, payment information, personal details, and confidential notes simple and secure. With member Groups and Shared Folders, sharing multiple items with departments and teams is quick and easy.
Effortless Access Management: IT teams benefit from simpler granting and revoking access to systems, software, and sensitive data. This makes on- and off-boarding of staff quick and definitive. The business maintains ownership of credentials and can reassign them as needed.
Businesses can realise cyber-insurance benefits, either from a reduction in premiums or perhaps by enabling cyber-insurance to be obtained for the first time. Demonstrable compliance with best practices satisfies the requirements in a key area for cyber-insurance providers.
Blaze Password Manager uses Amazon Web Services as a cloud provider with its own key management solution for hardware encryption.
Item storage is processed from the database cluster with active replication. Each cluster member is stored in a different availability zone and meets all the high availability requirements. If one database goes down for any reason, others will seamlessly distribute the load, and our team will be immediately notified.
Our service is backed by end-to-end encryption architecture, meaning that your data is encrypted and decrypted at the device level. Therefore, the data stored by us is always encrypted.
Blaze Password Manager is built upon the following security principles:
- State-of-the-art Encryption Algorithms
Encryption is the foundational part of the entire Blaze Password Manager security structure. We strive to bring our users a handy, foolproof method of storing their passwords securely at all times. This is made possible with the help of the top-tier elliptic curve encryption library NaCl.
We chose the ChaCha20 family over AES because the performance of the latter heavily relies on the hardware features (such as the AES instruction set for x86 processors), which are rarely available on mobile devices.
- End-to-End Encryption
Blaze Password Manager’s end-to-end encryption ensures that no sensitive data is exposed at any step of the way. NordPass is built to encrypt data locally and only then move it to the cloud. This means that Blaze and NordPass employees cannot view or access your items — only you can. And, if your data ends up in the wrong hands, they will see nothing but gibberish.
- Extra security layers
To ensure complete protection, we provide users with multiple layers of security. As an organisation, you can require all your users to sign in with multi-factor authentication in addition to their Master Passwords. To do so, they can use popular authentication apps or backup codes.
- Secure item sharing
Blaze Password Manager doesn’t just store your items but also allows you to share them worry-free. Passwords, credit cards, and secure notes are also end-to-end encrypted and protected from prying eyes.
- Business authentication
Business authentication is built on the OAuth 2.0 protocol, which acts as a centralized identity provider and authorization server for NordPass. The implementation of OAuth 2.0 protocols for business authentication is fully compliant with the Internet Standards created and published by the Internet Engineering Task Force (IETF) and is also in line with the best current practices.
The Encryption Technology Used
In Blaze Password Manager, the organisation is the owner of all the data. In other words, if an employee creates an item, the access is instantly granted to that employee, and they can manage that item in the app. But, if the employee leaves the company, their items stay within the organisation and can be reassigned to another member. The organisation can also recover employees’ items without the risk of losing any data.
Public-key cryptography is used. The Master Key derivation uses the Argon2id function with 16-bytes cryptographic salt.
Each user has a unique public-key cryptography key pair. Public Key is always stored in plain text form. Private Key, on the other hand, exists in plain text form only on the user’s end device for a limited period of time and never leaves it. When we need to store a user’s Private Key, it’s encrypted with secret-key cryptography (XChaCha20-Poly1305-IETF) on the user’s device and only then passed to us.
While the app is unlocked, the unencrypted Private Key is stored in the secure memory accessible only to the NordPass application. When an application is locked, either by the user or automatically after a set period of inactivity, the Private Key is deleted from the secure memory.
For the user’s Private Key encryption, the Master Key is used. Master Key is derived from the Master Password together with a 16-bytes-unique-per-user cryptographic salt using the key derivation function (Argon2id). Users are asked for the Master Password each time the user’s Private Key needs decrypting.
In addition to the encryption principles above, every item (folder, password, credit card, etc.) has two types of data:
Metadata (title, website address, cardholder name, etc.
Secret data (login credentials, credit card number, etc.
This enables permission granularity: a user can see that an item exists but can’t use it (see credentials) until they are granted the rights to do so.
Organisation Owners can use their privileges to restore any account even if the master password or recovery codes are lost.
People and Passwords – a Critical Challenge for Cybersecurity
Human factors are the most common contributor to cybersecurity breaches in companies today. While the benefits of strong passwords and multi-factor authentication (MFA) are understood by IT professionals, such policies are unfortunately hard to enforce across an organisation.
A major reason for this is the variety of logons and passwords which individuals are required to use across different systems in their daily workflows. This is exacerbated when occasionally used systems and external accounts are involved. It gets too complicated for many end-users to remember long/secure passwords and to use different passwords for different services, so people resort to keeping a note of their passwords – either physically or in non-secure files.
From an IT and business perspective, such a scenario has obvious consequences: security across the business may be weak, difficult to manage, and cyber-security insurance may be either ineffective or subject to high premiums. Additionally, compliance with security-dependent certifications (such as PCI-DSS) may be affected, compromising certain business operations.
Comprehensive Range of Supported Clients
To encourage usage and convenience for the end-user, a range of clients are available including Windows, macOS, iOS Android, Chrome OS, and Linux, as well as browser plug-ins for Edge, Safari, Opera, Chrome, and Firefox for both desktop and mobile devices.
Enabling Good Security Practices
In the digital age when cyber-attacks on companies number in the millions, Blaze Password Manager was created to address the needs of small and medium-sized enterprises as well as large corporations. It provides your employees with a secure and easy-to-use platform where they can store, access, and share work passwords.
Through the central administration dashboard, IT teams can manage and monitor employee usage of passwords and other commonly used information that might otherwise find itself being written down and carried around.
The Secure Notes feature has a wide range of uses, such as providing the employee with a secure means of keeping door access codes, WiFi passwords, or confidential client information on their handheld devices.
Making it easier to be secure
Blaze’s focus with Blaze Password Manager is to supply businesses with the best tools to address poor password security. The product includes additional security tools such as the Data Breach Scanner and Password Health. These help IT teams to easily detect data involved in any known breaches and to identify weak, compromised, old, or reused passwords.
By using a ISO 27001 and SOC 2 Type 1 certified and independently audited solution, IT teams can provide additional assurance of their organisation’s cybersecurity both to senior management and cyber-insurance providers.
Get Control of Password Compliance
Get Blaze Password Manager
In doing so, Blaze have access to a vast array of products that allow us to overcome our customers’ business challenges and requirements.
Blaze is a Microsoft Solutions Partner and Tier 1 Microsoft CSP Partner. We specialise in Microsoft 365 (including Teams and Teams Phone System), in Microsoft On-Premise and Hosted / Cloud Infrastructure (including Azure), and enable businesses to continue their digital evolution by fully exploiting the latest capabilities of Microsoft products as they evolve.
As a Microsoft Solutions Partner for Modern Work, Blaze has demonstrated a broad capability to help customers boost productivity and make the shift to hybrid work using Microsoft 365.
Blaze is an Expert Partner of Fortinet, a global industry leader in the supply of secure networking infrastructure systems. Fortinet are our technology partner of choice when building customer-specific Private SD-WANs, and Blaze is one of only a handful of Fortinet SD-WAN Specialization Partners in the UK and a Fortinet top-level Expert Partner. Blaze is also a Fortinet-accredited Managed Secure Solutions Provider (MSSP) and Integrator Fortinet partner. A Leader in several of Gartner’s Magic Quadrants, the Fortinet platform combines excellent performance with advanced security features, superb manageability, and excellent Total Cost of Ownership (TCO) per Mbps.
Veeam is a highly respected leader in cloud-based backup and recovery software, data protection and advanced monitoring in the data centre.
Blaze is a Veeam Cloud and Service Provider Silver Partner and we have combined Veeam technology with our highly secure Blaze Cloud™ infrastructure to produce BlazeVault™, a highly dependable, secure, and resource-efficient solution which will keep downtime to an absolute minimum in the event of data loss in operational systems or ransomware attack.
Blaze is a Bitdefender Gold MSP Partner. Bitdefender is a global cybersecurity leader protecting over 500 million systems through OEM technology partnerships, including with many global IT companies. Tests show it is unmatched in Attack Prevention. Based on Bitdefender technology, Blaze Endpoint Protection hardens endpoints to prevent malware and malicious attacks, and it provides the investigation and remediation capabilities needed to dynamically respond to security incidents when they evade protection controls. Blaze Managed EDR keeps your organisation safe with 24×7 security monitoring, advanced attack prevention, detection and remediation.
Cisco has long been the world’s pre-eminent network systems vendor, particularly for technology used at the core of major corporate networks and the internet. In addition to using Cisco equipment within our customers’ private networks, Blaze incorporates Cisco technology into the heart of our own network operations; the Blaze Private Core Network is built utilising Enterprise-class CISCO core routing equipment.