Support
Support
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Firefox, passwords stored in the logins.json AES-256

olek
New member
‎21-08-2025 11:03 AM
Status: New idea


In Mozilla Firefox, passwords stored in the logins.json and key4.db files are encrypted using the Triple DES (3DES) algorithm in CBC (Cipher Block Chaining) mode. The encryption key is further secured, and if a master password is set, this key is encrypted using a key derived from the master password via the PBKDF2 function. This provides an additional layer of protection, although it’s worth noting that 3DES is considered outdated compared to newer standards like AES.

Can Mozilla Team is able implement AES-256 like lastpass used .

See more ideas labeled with:
Comment
5 Comments
Status changed to: New idea
Jon
Community Manager
Community Manager
‎21-08-2025 02:57 PM
‎21-08-2025 02:57 PM

Thanks for submitting an idea to the Mozilla Connect community! Your idea is now open to votes (aka kudos) and comments.

John111
New member
‎13-10-2025 01:24 PM
‎13-10-2025 01:24 PM

https://linuxiac.com/firefox-144-now-available-for-download/

Status changed to: New idea
Jon
Community Manager
Community Manager
‎15-10-2025 12:50 PM
‎15-10-2025 12:50 PM

This is now delivered — high fives all around 🙌

Keep on sharing your feedback and ideas to improve Firefox. We look forward to collaborating more with you all here on Connect!

John111
New member
‎21-10-2025 07:26 AM
‎21-10-2025 07:26 AM

AL said my that . May be better use it . he he

For local password encryption in Firefox, AES-256-GCM or ChaCha20-Poly1305 are more secure and suitable than AES-256-CBC, thanks to built-in authentication and simpler use in modern browsers.

John111
New member
‎21-10-2025 07:28 AM
‎21-10-2025 07:28 AM

AL said my that . May be better use it . he he.For local password encryption in Firefox, AES-256-GCM or ChaCha20-Poly1305 are more secure and suitable than AES-256-CBC, thanks to built-in authentication and simpler use in modern browsers.

Copyright © 2025 Khoros, LLC