Lock Vs Logout

Lock and Logout do not perform the same function. It is important to understand the differences between them.

WALLIX Vault only stores Encrypted Data on its servers.

Login

The Master Password is needed to Login and gain access to the Account Encryption Key.

An Internet Connection (or Server connection) is needed.

Encrypted Vault Data is downloaded.

It is decrypted using the Account Encryption Key.

Unlock 

The Account is already logged in.

The Encrypted Vault Data has already been downloaded.

The Master Password is not needed to unlock (but can be used).

Therefore, Unlock using PIN or Biometrics is possible.

An Internet Connection (or Server connection) is not needed.

Lock and Unlock using Biometrics or PIN

After activation of Unlock using a PIN or a Biometric Factor, a New PIN or a Biometric Encryption Key is created. 

This is derived from the PIN or Biometric Factor used to encrypt the Account Encryption Key, which is stored locally when the User is logged in.

Unlock using Master Password on Browser Restart, the Account Encryption Key is stored in memory.

When you Unlock the Vault, the PIN or Biometric Encryption Key is used to decrypt the Account Encryption Key stored locally, which is then used to decrypt the Vault Data stored locally.

When you Lock the Vault, the decrypted Account Encryption Key and Vault Data are deleted.