Jump to content
Enpass Discussion Forum

Where to store my keyfile?


Martijn;)

Recommended Posts

After using 1Password for a long time, I plan to go back to Enpass, the first password manager I used. This is mainly because multiple vaults are available in the latest Enpass versions.

My 1Password account is secured with a master password, secret key and 2FA. At Enpass I will have to use a keyfile to make the vault just as safe.

But where can I store my keyfile the best and easiest so that I can access it on any device (Windows, Android smartphone, Chromebook)?

  • Like 1
Link to comment
Share on other sites

It's impossible for hackers to crack the database if they don't have access to the keyfile. The secret key gets appended to the master password so the password will be very long (check the picture). The best way is to keep the keyfile on your device and only the enpass database on your cloud storage.

Correct me if I'm wrong but the only reason to use a keyfile is to ensure that the Enpass database will be safe on your cloud account. 

When hackers get into your device they will find your database and keyfile location, so it's always recommended to use a unique strong master password.

As a backup measure I encrypted the keyfile with AES Crypt: https://www.aescrypt.com/ it's an open source cross platform tool (Windows, Linux, Mac, Android and iOS) to encrypt/decrypt files. So that I can safely store the encrypted keyfile somewhere else like on an other cloud account ,webhosting or work computer (which I have easy access to). Just in case when my house catches fire with all my data and devices.

 

main-qimg-adf75fdc3b57a8b138adc25c5128f4c7.jpg

This picture may be out of date.

Edited by TREMOR
Link to comment
Share on other sites

10 hours ago, TREMOR said:

It's impossible for hackers to crack the database if they don't have access to the keyfile. The secret key gets appended to the master password so the password will be very long (check the picture). The best way is to keep the keyfile on your device and only the enpass database on your cloud storage.

Correct me if I'm wrong but the only reason to use a keyfile is to ensure that the Enpass database will be safe on your cloud account. 

When hackers get into your device they will find your database and keyfile location, so it's always recommended to use a unique strong master password.

As a backup measure I encrypted the keyfile with AES Crypt: https://www.aescrypt.com/ it's an open source cross platform tool (Windows, Linux, Mac, Android and iOS) to encrypt/decrypt files. So that I can safely store the encrypted keyfile somewhere else like on an other cloud account ,webhosting or work computer (which I have easy access to). Just in case when my house catches fire with all my data and devices.

 

main-qimg-adf75fdc3b57a8b138adc25c5128f4c7.jpg

This picture may also be outdated.

Are there any other ways that could protect the keyfile in the worst case scenario? I don't like to have more passwords to remember.

Link to comment
Share on other sites

Maybe a keyfile on an USB stick. But that sucks when you want to use it on your phone.

I like to use a NFC tag for this, but I need to research this and maybe I need help from enpass. 

Hopefully enpass is reading this. We need some kind of hardware keyfile. A keyfile should be something seperate from the device.

Edited by TREMOR
Link to comment
Share on other sites

6 minutes ago, TREMOR said:

Maybe a keyfile on an USB stick. But that sucks when you want tu use it on your phone.

I like to use a NFC sticker for this, but I need to research this and maybe I need help from enpass. 

Hopefully enpass is reading this. We need some kind of hardware keyfile. A keyfile should be something seperate from the device.

An encryption key that you can write down could also be a solution I think. Just like 1Password's Secret Keys.

I don't like to store the keyfile on a USB.

Edited by Martijn;)
Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...