KeePass is a free open source password manager that allows you to store your passwords securely. You may keep all of your passwords in a single database protected by a master key or a key file. You need to remember one master password or pick the key file to unlock the whole database.
The databases are protected using the most up-to-date and safe encryption techniques available. A password database comprises only one file that can be moved from one machine to another.
KeePass encrypts its password databases using the Advanced Encryption Standard (AES, Rijndael) and the Twofish algorithm.
Both of these cyphers are thought to be relatively safe. For example, AES became a federal government standard in the United States and was certified by the National Security Agency (NSA) for top-secret material.
KeePass uses the standard CSV export format of various password safes like Password Keeper and Password Agent. Exports from these programs can be easily imported to your KeePass databases. The password list can be exported to TXT, HTML, XML, and CSV formats.
The application has a portable edition: you can carry it on a USB stick, and runs on Windows systems without installation.
- KeePass supports the Advanced Encryption Standard (AES, Rijndael) and the Twofish algorithm to encrypt its password databases. Both of these cyphers are regarded as being very secure. For top secret information, AES, e.g. became effective as a U.S. Federal government standard and is approved by the National Security Agency (NSA).
- The complete database is encrypted, not only the password fields. So, your user names, notes, etc., are encrypted, too.
- SHA-256 is used to hash the master key components. SHA-256 is a 256-bit cryptographically secure one-way hash function. No attacks are known yet against SHA-256. The output is transformed using an essential derivation function.
- Protection against dictionary and guessing attacks: by transforming the master key component hash using an essential derivation function (AES-KDF, Argon2, …), dictionary and guessing attacks can be harder.
- Process memory protection: your passwords are encrypted while KeePass is running, so your passwords aren’t revealed even when the operating system dumps the KeePass process to disk.
- [2. x] Protected in-memory streams: when loading the inner XML format, passwords are encrypted using a session key.
- Security-enhanced password edit controls: KeePass is the first password manager that features security-enhanced password edit controls. None of the available password edit control spies works against these controls. The passwords entered in those controls aren’t even visible in the process memory of KeePass.
- The master key dialogue can be shown on a secure desktop, on which almost no keylogger works. Auto-Type can be protected against keyloggers, too.
Size: 4.21 MB