- KeePass
Infobox Software
name = KeePass Password Safe
caption = KeePass 1.x Main Window
collapsible =
author =
developer = Dominik Reichl
released =November 16 ,2003
latest release version = 1.13
latest release date = release date|2008|09|7
latest preview version = 2.05 Alpha
latest preview date = release date|2008|04|8
frequently updated =
programming language =
operating system = Windows
platform =
language =Multilingual
status =
genre =Password manager
license = GPL
website = [http://keepass.info keepass.info]KeePass Password Safe is a free password management utility for
Microsoft Windows . KeePass storespassword s, usernames, and URLs in an encrypted database unlocked by a password, key file, or a combination of the two. The database is encrypted with AES orTwofish encryption ciphers.KeePass is maintained by Dominik Reichl. Development began in
November 2003 . The project is hosted onSourceForge and is currently rated "Production/Stable", and there are more than 28 translations available. There are currently several unofficial ports in development targetingLinux ,Mac OS X ,PocketPC , andJ2ME .Cryptography
According to the utility's author, KeePass was the first password management utility to use security-enhanced password edit controls, in this case one called CSecureEditEx.cite web
url = http://www.keepass.info/help/base/secedits.html
title = Secure Edit Controls - KeePass
author = Dominik Reichl
accessdate = 2007-12-13] The author makes several claims to the security of the control and its resistance to password revealing utilities, however the author does not cite or make any references to any third-party testing of the control to corroborate the claims of its security.cite web
url = http://www.codeproject.com/editctrl/SecEditEx.asp
title = CSecureEditEx - A More Secure Edit Control
author = Dominik Reichl
date = 2005-04-17
work = [http://www.codeproject.com The Code Project] ] The source code is freely available and open to such testing.Access to the database is restricted by either a master password or a key file. Both methods may be combined to create a "composite master key". If both methods are used, then both must be present to access the password database. KeePass version 2.x will introduce a third option: dependency upon the current Windows user.cite web
url = http://keepass.info/help/base/keys.html
title = Composite Master Key - KeePass
author = Dominik Reichl
accessdate = 2007-12-13]KeePass encrypts the database with the AES or
Twofish symmetric ciphers. AES is the default option, and Twofish is available but will be removed in version 2.x. Passwords are stored encrypted using theARC4 cipher and a session key while in memory. The session key is derived from the user password, if used, and a salt value using theSHA-256 message digest algorithm.cite web
url = http://keepass.info/help/base/security.html
title = Security - KeePass
author = Dominik Reichl
accessdate = 2007-12-13]Portability
KeePass does not utilize any functions that require the latest Windows operating system, such as theming on XP, or relying on the
.NET Framework . KeePass supports XP themes, but doesn't require this operating system capability. However, KeePass 2.x—a complete rewrite of program—is based on the .NET Framework. The application does not need to be installed, though a traditional Windows installer is available. You can download the binary ZIP package which contains only the main executable.The program doesn't create any new registry keys and it doesn't create any
initialization file s (ini) in your Windows directory. Deleting the KeePass directory (in case you downloaded the binary zip package) or using the uninstaller (in case you downloaded the installer package) leaves no trace of KeePass on your system.A password database consists of only one file that can be transferred from one computer to another easily.
There are ports to other operating systems than Windows (for example
KeePassX on Mac OS X).Features
Password management
Passwords stored by this application can be further divided into manageable groups. Each group can have an identifying icon. Groups can be further divided into subgroups in a tree-like organization.
Further, KeePass tracks the creation time, modification time, last access time, and expiration time of each password stored. Files can be attached and stored with a password record, or text notes can be entered with the password details. Each password record can also have an associated icon.
Import and export
The password list can be exported to various formats like TXT,
HTML , XML and CSV. The XML output can be easily used in other applications and re-imported into KeePass using a plugin. The CSV output is fully compatible with most other password safes like the commercial closed-source Password Keeper and the closed-source Password Agent, also the CSVs can be imported by spreadsheet applications like Microsoft Excel orOpenOffice.org Calc . The HTML output usesCascading Style Sheets (CSS) to format the table, so you can easily change the layout. Many other file formats are supported through KeePass plugins.KeePass uses the common CSV export format of various passwords safes like Password Keeper and Password Agent. Exports from these programs can be easily imported to your KeePass databases. KeePass can parse and import TXT outputs of CodeWalletPro, a commercial closed-source password safe. It can import TXT files created by
Bruce Schneier 'sPassword Safe v2. Many other file formats are supported through KeePass plugins.Auto-type, global hot keys, drag-and-drop
Auto-type, global auto-type hot key combination and drag-n-drop support: KeePass can minimize itself and type the information of the currently selected entry into dialogs, webforms, etc. Of course, the typing-sequence is 100% user-customizable, read the documentation file for more. KeePass features a global auto-type hot key. When KeePass is running in the background (with opened database) and you press the hot key, it looks up the correct entry and executes its auto-type sequence. All fields, title, username, password, URL and notes can be drag-n-dropped into other windows.
Intuitive and secure Windows clipboard handling: just double-click on any field of the password list to copy its value to the Windows clipboard. Timed clipboard clearing: KeePass can clear the clipboard automatically some time after you've copied one of your passwords into it. KeePass features a protection against clipboard monitors (other applications won't get notifications that the clipboard content has been changed) and it has a paste-once functionality: allow only one paste operation, after pasting the clipboard is cleared automatically by KeePass.
Browser Support
Keepass 1.x supports
Mozilla Firefox andInternet Explorer , with atoolbar . Version 2.x alpha includes support forOpera browser , but there is notoolbar .Built-in password generator
KeePass features a built-in password generator that generates random passwords. Random seeding can be done through user input (mouse movement and random keyboard input).
Plugins
KeePass has a plugin architecture. There are already some plugins available on the KeePass homepage (import/export from/to various other formats, plugin checking for updates, database backup plugin, etc.). Note that plugins may compromise the security of KeePass.
See also
*
KeePassX , a multiplatform open source KeePass clone forLinux andMac OS X .
* [http://sourceforge.net/projects/keepassbb/ KeePass for Blackberry] , a Blackberry port of KeePass for RIM devices
*Password Safe , a free open-source program for storing passwords under Windows operating system.
* iMacros for Firefox, a password manager and macro recorder for Firefox
* [http://keepassserver.info/ KeePass for J2ME] , a J2ME port of KeePass for mobile phones.
*Apple Keychain - The built-in password database of Apple's Mac OS X. Also uses encryption, but information is scarce.References
External links
* [http://keepass.info KeePass Password Safe]
*SourceForge|project=keepass|name=KeePass Password Safe
* [http://hotbutteredit.com/video-tutorials Video Tutorials]
Wikimedia Foundation. 2010.