This is essential for security, as it allows us to verify which passwords a group has access to. Determining whether a group can access specific passwords requires checking the permissions on each one individually, and with thousands of passwords, that's simply not practical.