KeePass
From Wikipedia, the free encyclopedia
 |
|
 KeePass 1.x Main Window |
|
| Developed by | Dominik Reichl |
|---|---|
| Initial release | November 16, 2003 |
| Latest release | 1.15 / 2009-2-13 |
| Preview release | 2.07 Beta / 2009-3-14 |
| Operating system | Windows |
| Available in | Multilingual |
| Type | Password manager |
| License | GPL |
| Website | keepass.info |
KeePass Password Safe is an open source password management utility for Microsoft Windows.
Contents |
[edit] Cryptography
According to the utility's author, KeePass was the first password management utility to use security-enhanced password edit controls, in this case one called CSecureEditEx.[1] The author makes several claims to the security of the control and its resistance to password revealing utilities, however the author does not cite or make any references to any third-party testing of the control to corroborate the claims of its security.[2] The source code is freely available and "open" to such testing[dubious ].
Access to the database is restricted by either a master password or a key file. Both methods may be combined to create a "composite master key". If both methods are used, then both must be present to access the password database. KeePass version 2.x will introduce a third option: dependency upon the current Windows user.[3] KeePass encrypts the database with the AES or Twofish symmetric ciphers. AES is the default option, and Twofish is available in 1.x, but will not be available in version 2.x.
Passwords are protected in memory while KeePass is running. On Windows Vista, passwords are encrypted in process memory using Windows Data protection API, which allows storing the key for memory protection in a secure, non-swappable memory area. On previous Windows systems, KeePass falls back to using the ARC4 cipher with a temporary, random session key.[4]
[edit] Portability
KeePass 1.x does not use any functions that require the latest Windows operating system, such as theming on XP, or relying on the .NET Framework. KeePass supports XP themes, but doesn't require this operating system capability. However, KeePass 2.x—a complete rewrite of program—is based on the .NET Framework. The application does not need to be installed, though a traditional Windows installer is available. You can download the binary ZIP package which contains only the main executable and runs fine from portable devices like USB sticks.
The program doesn't create any new registry keys and it doesn't create any initialization files (ini) in the Windows directory. Deleting the KeePass directory (if the binary zip package is used) or using the uninstaller (if the installer package is used) leaves no trace of KeePass on the system.[citation needed]
A password database consists of only one file that can be transferred from one computer to another easily.
There are ports to other operating systems than Windows (for example KeePassX on Mac OS X).
[edit] Features
 |
This article is written like an advertisement. Please help rewrite this article from a neutral point of view. For blatant advertising that would require a fundamental rewrite to become encyclopedic, use {{db-spam}} to mark for speedy deletion. (April 2008) |
[edit] Password management
Passwords stored by this application can be further divided into manageable groups. Each group can have an identifying icon. Groups can be further divided into subgroups in a tree-like organization.
Further, KeePass tracks the creation time, modification time, last access time, and expiration time of each password stored. Files can be attached and stored with a password record, or text notes can be entered with the password details. Each password record can also have an associated icon.
[edit] Import and export
The password list can be exported to various formats like TXT, HTML, XML and CSV. The XML output can be used in other applications and re-imported into KeePass using a plugin. The CSV output compatible with many other password safes like the commercial closed-source Password Keeper and the closed-source Password Agent, also the CSVs can be imported by spreadsheet applications like Microsoft Excel or OpenOffice.org Calc. Exports from these programs can be imported to KeePass databases. KeePass can parse and import TXT outputs of CodeWalletPro, a commercial closed-source password safe. It can import TXT files created by Bruce Schneier's Password Safe v2. File format support can be expanded through the use of KeePass plugins. The HTML output uses Cascading Style Sheets (CSS) to format the table, which makes it possible to change the layout.
[edit] Auto-type, global hot keys, drag-and-drop
Auto-type, global auto-type hot key combination and drag-n-drop support: KeePass can minimize itself and type the information of the currently selected entry into dialogs, webforms, etc. KeePass features a global auto-type hot key. When KeePass is running in the background (with opened database) and you press the hot key, it looks up the correct entry and executes its auto-type sequence. All fields, title, username, password, URL and notes can be drag-n-dropped into other windows.
Windows clipboard handling allows to double-click on any field of the password list to copy its value to the Windows clipboard. KeePass can clear the clipboard automatically some time after the user has copied one of his passwords into it. KeePass features a protection against clipboard monitors (other applications won't get notifications that the clipboard content has been changed) and it has a paste-once functionality: allow only one paste operation, after pasting the clipboard is cleared automatically by KeePass.
[edit] Browser Support
The auto-type functionality works with all windows, and consequently with all browsers. The KeeForm plugin for Internet Explorer and Mozilla Firefox allows to open websites and fill in user details automatically. For Internet Explorer, there's also a browser integration toolbar available.
[edit] Built-in password generator
KeePass features a built-in password generator that generates random passwords. Random seeding can be done through user input (mouse movement and random keyboard input).
[edit] Plugins
KeePass has a plugin architecture. There are various plugins available on the KeePass homepage (import/export from/to various other formats, database backup, integration and automation, etc.). Note that plugins may compromise the security of KeePass, because they are written by independent authors and have full access to the KeePass database.
[edit] See also
- KeePassX, a multiplatform open source KeePass clone for Linux , Mac OS X and Microsoft Windows.
- KeePass for Blackberry, a Blackberry port of KeePass for RIM devices
- Password Safe, a free open-source program for storing passwords under Windows operating system.
- iMacros for Firefox, a password manager and macro recorder for Firefox
- KeePass for J2ME, a J2ME port of KeePass for mobile phones.
- Apple Keychain - The built-in password database of Apple's Mac OS X. Also uses encryption, but information is scarce.
- LastPass, a multiplatform freeware password manager
[edit] References
- ^ Dominik Reichl. "Secure Edit Controls - KeePass". http://www.keepass.info/help/base/secedits.html. Retrieved on 2007-12-13.
- ^ Dominik Reichl (2005-04-17). "CSecureEditEx - A More Secure Edit Control". The Code Project. http://www.codeproject.com/editctrl/SecEditEx.asp.
- ^ Dominik Reichl. "Composite Master Key - KeePass". http://keepass.info/help/base/keys.html. Retrieved on 2007-12-13.
- ^ Dominik Reichl. "Security - KeePass". http://keepass.info/help/base/security.html. Retrieved on 2007-12-13.
[edit] External links
 |
Wikimedia Commons has media related to: KeePass Screenshots |
