This password manager wants you to remember 24 words to recover your account

Keeper Password Manager running on a phone
(Image credit: Keeper)

Keeper has introduced a new way to recover access to your vault should you forget your master password. The irony is, however, that your memory had better be pretty good, since you now need to remember a 24-word phrase to get them back.

The new method replaces the typical security question and answer recovery method, which user's could customize to be whatever they liked - handy if typical suggestions such as your first pet's name don't apply to you.

In explaining the encryption process, Keeper says that, "the recovery phrase generates a unique 256-bit AES key that decrypts a copy of the user's 256-bit AES data key. The data key then decrypts each individual record key, which in turn decrypts each vault record."

BIP39

The new recovery phrase relies on the BIP39 system, which is used to protect crypto wallets, and utilizes a string of random words to generate encryption keys. There are 2048 words in the list which have been "carefully selected to improve visibility and make the recovery process less error-prone."

From this list, 24 random words are generated when you set your recovery phrase in Keeper. The company has said that users who already have security questions set up as their recovery method will be prompted to change it to the new 24-word phrase. 

As committing this phrase to memory is unlikely, Keeper says: "It is important for users to store this recovery phrase in a safe place such as a physical safe, and not on a computer, phone or other device."

In the event that users need to reset their master password, then they will have to use this new 24-word recovery phrase in addition to an email verification code. Those with 2FA enabled will also need to provide the codes generated on their secondary device, usually via an authenticator app.

As expected of the best password manager for mid-sized businesses, Keeper enterprise and business customers have a greater degree of control. Administrators on these plans can disable account recovery as an option for users in their organization in the role enforcement policy section of the Keeper Admin Console. Administrators can enable account recovery on SSO-enabled accounts.

Keeper cautions that as it employs a zero-knowledge policy, if a user forgets both their master password and recovery phrase, then they will be locked out of their account for good, as Keeper cannot recover them for you.

Lewis Maddison
Reviews Writer

Lewis Maddison is a Reviews Writer for TechRadar. He previously worked as a Staff Writer for our business section, TechRadar Pro, where he had experience with productivity-enhancing hardware, ranging from keyboards to standing desks. His area of expertise lies in computer peripherals and audio hardware, having spent over a decade exploring the murky depths of both PC building and music production. He also revels in picking up on the finest details and niggles that ultimately make a big difference to the user experience.

Read more
Keeper
Let 2025 be the year you upgrade your password security— get 50% off Keeper’s Personal & Family plans
Keeper
Start the new year with Keeper- pay half off on the Personal and Family plan
Young woman working at a coffee shop with a laptop
Too many passwords, not enough brain space? Here’s how password managers can improve your life
A cybersecurity icon projecting from a laptop screen.
Best password recovery software of 2025
Person using finger print authentication
Passwords out, passkeys in: The future of secure authentication
Man screaming at computer with TechRadar data privacy week logo next to it.
I almost lost my entire online identity – until one tool made all the difference
Latest in Security
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
URL phishing
HaveIBeenPwned owner suffers phishing attack that stole his Mailchimp mailing list
Ransomware
Cl0p resurgence drives ransomware attacks to new highs in 2025
Google Chrome
Google Chrome security flaw could have let hackers spy on all your online habits
cybersecurity
Chinese government hackers allegedly spent years undetected in foreign phone networks
Data leak
A major Keenetic router data leak could put a million households at risk
Latest in News
A young woman is working on a laptop in a relaxed office space.
I’ll admit, Microsoft’s new Windows 11 update surprised me with its usefulness, providing accessibility fixes, a gamepad keyboard layout, and PC spec cards
inZOI promotional material.
inZOI has become the most wishlisted game on Steam, but I wouldn't get too caught up in the hype
Xbox Series X and Xbox wireless controller set to a green background
Xbox Insiders are currently testing a new Game Hub feature that looks useful, but I've got mixed feelings about it
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
Microsoft Surface Laptop and Surface Pro devices on a table.
Hate Windows 11’s search? Microsoft is fixing it with AI, and that almost makes me want to buy a Copilot+ PC
Oura Ring 4
Activity tracking on Oura Ring is about to get a whole lot better, but I've got bad news about your step count