Overview
- Proton announced AI access tokens as a new way to share credentials with AI agents so agents can use only the specific vault items they need without receiving full passwords or API keys.
- Each token is read-only and tied to selected vault items, requires the agent to state a reason every time it requests credentials, and records every use in real-time audit logs for review.
- Tokens include lifecycle controls that let users set expirations from one hour to one year and revoke access instantly, and Proton says stored credential data remains protected by end-to-end encryption.
- Proton made the feature immediately available at no extra cost on Pass Plus, Pass Professional, Pass Family, Proton Unlimited, and Proton Workspace plans and documents how to paste token setup instructions into agents or scripts.
- Proton frames the launch as a response to security practices that block enterprise scaling of AI agents, citing surveys that show many organizations experiment with agents but few scale them because credential risk, while independent security audits and adoption metrics are not yet reported.