★★★★★ OSS
Open-source password manager with Passkeys, 2FA vault, and Send—foundation for replacing Google Sign-In with unique credentials.
- Passkey/2FA保管
- セキュリティ監査済み
- 自己ホスト可
⚠ 無料枠は2人まで共有
なぜ Google Sign-In / OAuth から離れる?
Google Sign-In means one suspension can cut access to every linked app. Password management and distributed identity providers reduce single points of failure.
Googleの限界・リスク
- • Google account suspension can revoke access to all linked services at once
- • OAuth consent passes requested scopes (email, profile, etc.) to third parties
- • Hard to audit and revoke stale Google Sign-In connections
- • Passkeys and 2FA concentrated on Google account become another single failure point
選び方ガイド
全部試す必要はありません。あなたの優先順位に合わせて絞り込みましょう。
- 1 Passwords + passkeys + 2FA: Bitwarden (OSS, self-hostable) or Proton Pass (E2EE)
- 2 Team/family SSO: Keycloak (self-host) or Authelia (reverse-proxy auth)
- 3 Email aliases to spread accounts: SimpleLogin (Proton)
- 4 Enterprise: 1Password (audited, strong team features)
クイック比較
プライバシー・使いやすさ・機能・コスパの4軸で評価しています。
| ツール | Privacy | Ease of use | Features | Value | 総合 |
|---|---|---|---|---|---|
| Bitwarden | ★★★★★ | ★★★★★ | ★★★★★ | ★★★★★ | 20/20 |
| Proton Pass | ★★★★★ | ★★★★★ | ★★★★★ | ★★★★★ | 17/20 |
| Keycloak | ★★★★★ | ★★★★★ | ★★★★★ | ★★★★★ | 17/20 |
| 1Password | ★★★★★ | ★★★★★ | ★★★★★ | ★★★★★ | 17/20 |
| Authelia | ★★★★★ | ★★★★★ | ★★★★★ | ★★★★★ | 16/20 |
| SimpleLogin | ★★★★★ | ★★★★★ | ★★★★★ | ★★★★★ | 18/20 |
すべての代替ツール(6)
★★★★★
Encrypted password manager with Hide-my-email—disperse Google Sign-In dependency via aliases and strong passwords.
- E2EE
- Hide-my-email
- Proton統合
⚠ 無料枠は10エイリアス
★★★★★ OSS
Red Hat–backed IAM with OIDC/SAML—team or homelab IdP replacing Google OAuth for self-hosted apps.
- OIDC/SAML
- SSO
- Red Hat支持
⚠ 運用スキル必要
★★★★
Audited commercial password manager with Watchtower breach monitoring—replace Google Sign-In with strong unique logins.
- Watchtower漏洩監視
- Travel Mode
- チーム機能
⚠ 有料のみ(無料枠なし)
★★★★★ OSS
Self-hosted auth server for Traefik/Nginx—SSO, 2FA, WebAuthn in front of homelab services.
- SSO/2FA/WebAuthn
- Traefik/Nginx連携
- 軽量Go製
⚠ リバースプロキシ必須
★★★★★ OSS
Proton-owned alias service—unique email per service to limit blast radius when moving off Google-linked addresses.
- 無制限エイリアス
- カスタムドメイン
- Proton統合
⚠ ログイン手段の置換ではない
Related on Amazon
Books and devices that may help your migration. Verify specs and price before buying.
- Accessories
YubiKey 5 NFC
Hardware 2FA when moving away from “Sign in with Google”.
View on Amazon ↗
移行のヒント
- 1 Review third-party app access under Google Account → Security
- 2 Switch each service to email+password or passkey before disconnecting Google
- 3 Generate unique strong passwords in Bitwarden or 1Password
- 4 Store TOTP 2FA seeds in your password manager