Jump to content
Martijn;)

Where to store my keyfile?

Recommended Posts

After using 1Password for a long time, I plan to go back to Enpass, the first password manager I used. This is mainly because multiple vaults are available in the latest Enpass versions.

My 1Password account is secured with a master password, secret key and 2FA. At Enpass I will have to use a keyfile to make the vault just as safe.

But where can I store my keyfile the best and easiest so that I can access it on any device (Windows, Android smartphone, Chromebook)?

  • Like 1

Share this post


Link to post
Share on other sites

It's impossible for hackers to crack the database if they don't have access to the keyfile. The secret key gets appended to the master password so the password will be very long (check the picture). The best way is to keep the keyfile on your device and only the enpass database on your cloud storage.

Correct me if I'm wrong but the only reason to use a keyfile is to ensure that the Enpass database will be safe on your cloud account. 

When hackers get into your device they will find your database and keyfile location, so it's always recommended to use a unique strong master password.

As a backup measure I encrypted the keyfile with AES Crypt: https://www.aescrypt.com/ it's an open source cross platform tool (Windows, Linux, Mac, Android and iOS) to encrypt/decrypt files. So that I can safely store the encrypted keyfile somewhere else like on an other cloud account ,webhosting or work computer (which I have easy access to). Just in case when my house catches fire with all my data and devices.

 

main-qimg-adf75fdc3b57a8b138adc25c5128f4c7.jpg

This picture may be out of date.

Edited by TREMOR

Share this post


Link to post
Share on other sites
10 hours ago, TREMOR said:

It's impossible for hackers to crack the database if they don't have access to the keyfile. The secret key gets appended to the master password so the password will be very long (check the picture). The best way is to keep the keyfile on your device and only the enpass database on your cloud storage.

Correct me if I'm wrong but the only reason to use a keyfile is to ensure that the Enpass database will be safe on your cloud account. 

When hackers get into your device they will find your database and keyfile location, so it's always recommended to use a unique strong master password.

As a backup measure I encrypted the keyfile with AES Crypt: https://www.aescrypt.com/ it's an open source cross platform tool (Windows, Linux, Mac, Android and iOS) to encrypt/decrypt files. So that I can safely store the encrypted keyfile somewhere else like on an other cloud account ,webhosting or work computer (which I have easy access to). Just in case when my house catches fire with all my data and devices.

 

main-qimg-adf75fdc3b57a8b138adc25c5128f4c7.jpg

This picture may also be outdated.

Are there any other ways that could protect the keyfile in the worst case scenario? I don't like to have more passwords to remember.

Share this post


Link to post
Share on other sites

Maybe a keyfile on an USB stick. But that sucks when you want to use it on your phone.

I like to use a NFC tag for this, but I need to research this and maybe I need help from enpass. 

Hopefully enpass is reading this. We need some kind of hardware keyfile. A keyfile should be something seperate from the device.

Edited by TREMOR

Share this post


Link to post
Share on other sites
6 minutes ago, TREMOR said:

Maybe a keyfile on an USB stick. But that sucks when you want tu use it on your phone.

I like to use a NFC sticker for this, but I need to research this and maybe I need help from enpass. 

Hopefully enpass is reading this. We need some kind of hardware keyfile. A keyfile should be something seperate from the device.

An encryption key that you can write down could also be a solution I think. Just like 1Password's Secret Keys.

I don't like to store the keyfile on a USB.

Edited by Martijn;)

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


×
×
  • Create New...