Don’t Store Your Passwords in the Cloud

Do you ever feel like digital security guidelines for passwords are terribly impractical? Who can remember long strings of unguessable letters, numbers, and special characters that have to be changed on a regular basis? The problem is only made worse by the fact that we are supposed to have different sets of credentials for every platform.

Keeping track of all of this information while adhering to generally accepted security guidelines is virtually impossible. That is why so many people rely on a password manager to keep track of their credentials for them. In this way, only a single password needs to be remembered; unlocking the password manager then grants the user access to all of their other stored credentials.

However, this approach does introduce a single point of failure. If the password manager itself is compromised, an attacker gets the keys to the castle in one fell swoop. A new device called MiixKey is promising to offer the convenience of a modern password manager while minimizing the risk of a data breach. It stores all of your confidential data offline, greatly reducing the potential attack surface.

MiixKey is a hardware security key with a built-in 2-inch touchscreen that is designed to operate entirely without cloud connectivity. Unlike traditional password managers that rely on apps or browser extensions, MiixKey allows users to create, edit, search, and manage credentials directly on the device itself. This eliminates the need for a companion phone app or computer during setup, a design choice aimed at reducing exposure to potential vulnerabilities.

The device supports storage for over 3,000 passwords using KeePass-compatible KDBX files, giving users flexibility to import existing credentials or create new ones directly on the device. Once stored, login becomes a streamlined process: MiixKey can automatically input usernames and passwords into connected devices via USB or Bluetooth using HID emulation, effectively acting like a keyboard.

MiixKey supports FIDO2 passkeys, OpenPGP encryption, PIV smart cards, and time-based one-time password (TOTP) generation for two-factor authentication. It also offers five isolated smart card slots, each protected by its own PIN, enabling multiple users or identities to coexist securely on a single device.

The hardware uses encrypted storage with AES-256 and implements secure boot verification to prevent unauthorized firmware modifications. In extreme situations, such as theft or coercion, MiixKey includes a “Dangerous Mode” PIN that wipes real data and presents a decoy vault. A separate “Emergency Mode” introduces a time-delay unlocking mechanism, allowing trusted parties to access sensitive data only after a predefined waiting period.

Additional features include NFC card emulation for access control, QR code-based credential sharing, and customizable keystroke scripts for automation tasks. The device can also generate strong random passwords up to 64 characters long.

While hardware security keys are not new, MiixKey attempts to combine multiple capabilities into a single, self-contained unit. The device is now available on Kickstarter, with rewards starting at $99. The first shipments are expected to go out in July 2026.