This is the official website of KeePass, the free, open source, light-weight and easy-to-use password manager.
- KeePass supports the Advanced Encryption Standard (AES, Rijndael) and the Twofish algorithm to encrypt its password databases. Both of these ciphers are regarded as being very secure. AES e.g. became effective as a U.S. Federal government standard and is approved by the National Security Agency (NSA) for top secret information.
- The complete database is encrypted, not only the password fields. So, your user names, notes, etc. are encrypted, too.
- SHA-256 is used to hash the master key components. SHA-256 is a 256-bit cryptographically secure one-way hash function. No attacks are known yet against SHA-256. The output is transformed using a key derivation function.
- Protection against dictionary and guessing attacks: by transforming the master key component hash using a key derivation function (AES-KDF, Argon2, …), dictionary and guessing attacks can be made harder.
- Process memory protection: your passwords are encrypted while KeePass is running, so even when the operating system dumps the KeePass process to disk, your passwords aren’t revealed.
- [2.x] Protected in-memory streams: when loading the inner XML format, passwords are encrypted using a session key.
- Security-enhanced password edit controls: KeePass is the first password manager that features security-enhanced password edit controls. None of the available password edit control spies work against these controls. The passwords entered in those controls aren’t even visible in the process memory of KeePass.
- The master key dialog can be shown on a secure desktop, on which almost no keylogger works. Auto-Type can be protected against keyloggers, too.
Multiple User Keys
- One master password decrypts the complete database.
- Alternatively you can use key files. Key files provide better security than master passwords in most cases. You only have to carry the key file with you, for example on a floppy disk, USB stick, or you can burn it onto a CD. Of course, you shouldn’t lose this disk then.
- For even more security you can combine the above two methods: the database then requires the key file and the password in order to be unlocked. Even if you lose your key file, the database would remain secure.
- [2.x] Additionally, you can lock the database to the current Windows user account. The database can then only be opened by the same person who created it.
- KeePass free and you have full access to its source code!
- Open Source prevents backdoors. You can have a look at its source code and compile it yourself.
- You can yourself check if the security is implemented correctly, you can, if you want, use any other encryption algorithm.
- Opening the sources also encourages other people to port the application to other systems (PocketPC version already in development) or write translations.
- KeePass is OSI Certified Open Source Software. OSI Certified is a certification mark of the Open Source Initiative.
Some Interesting Topics:
Disclaimer: No Copyright Infringement Intended, All Rights Reserved to the Actual Owner.
This content has been shared under Educational And Non-Profit Purposes Only.
- For Copyright Content Removal Please Contact the Original Poster (OP)
freesoff have no control over the shared content and nature of the external sites