Search the Community
Showing results for tags 'sqlcipher'.
-
An interesting and important question that was already raised, but not yet answered, in another thread: Is Enpass' built-in password generator part of SQLCipher or otherwise (if yes, how so?) open source and therefore trustworthy? I currently feel no need to demand to make the whole application open source as long as the security-relevant parts are. But the password generator is one of these and therefore a reassuring answer would be nice. If it's not open source, what are the plans in that regard? If it is, I think you should advertise that on your website, too.
- 4 replies
-
- 3
-
- sqlcipher
- password generator
-
(and 2 more)
Tagged with:
-
Hi Enpass Team, as you claim everywhere that Enpass is based on SQLCipher, an opensource technology, I decided to look by myself (not that I don't trust you, but i'm curious ;)). So, I installed sqlcipher and opened the database. It was easy to find the right parameters to decrypt the DB: PRAGMA cipher_default_kdf_iter = 24000; PRAGMA kdf_iter = 24000; PRAGMA key = '<PASSPHRASE>'; But now, I can't find where are the passwords. I would have thought they would be in the Cards table in the Data field, but it's obviously not, as (almost) all my Data fields have the same value. The passwords does not seem to be in the other tables. So, where are they? I surely missed something. Could you enlighten me? Thx!