Is the software for key management secure?

TheMSsForum.com: The Microsoft Software Forum

I use a software "Just1key" to manage keys for some
accounts when I login some websites. Is it secure? Could
the software bring about more risk of being hacked?
If someone knows the only one key for keys management, he
would know all my keys saved in that software, right?
Additionally, if my computer is hacked, could all the
keys be stolen? Hope you can answer all my questions.
thank you in advance.
Top

Re: Is the software for key management secure? by Shenan

Shenan
Fri Sep 17 07:48:13 CDT 2004

secure-or-not wrote:
> I use a software "Just1key" to manage keys for some
> accounts when I login some websites. Is it secure? Could
> the software bring about more risk of being hacked?
> If someone knows the only one key for keys management, he
> would know all my keys saved in that software, right?
> Additionally, if my computer is hacked, could all the
> keys be stolen? Hope you can answer all my questions.

I personally think it is a bad idea to store your password/account
information in any fashion - especially on your computer - and even more so
if you have to ask about it like you just have. heh

Searching the Internet for the application you mention - it seems a bit "new
and untested" to give a real opinion. Not sure if this is because of the
general "don't store you passwords that way" rule, or if the application is
just that new.

--
<- Shenan ->
--
The information is provided "as is", it is suggested you research for
yourself before you take any advice - you are the one ultimately
responsible for your actions/problems/solutions. Know what you are
getting into before you jump in with both feet.


Top

Re: Is the software for key management secure? by Kevin

Kevin
Fri Sep 17 12:15:54 CDT 2004

Shenan Stanley wrote:
> secure-or-not wrote:
>
>>I use a software "Just1key" to manage keys for some
>>accounts when I login some websites. Is it secure? Could
>>the software bring about more risk of being hacked?
>>If someone knows the only one key for keys management, he
>>would know all my keys saved in that software, right?
>>Additionally, if my computer is hacked, could all the
>>keys be stolen? Hope you can answer all my questions.
>
>
> I personally think it is a bad idea to store your password/account
> information in any fashion - especially on your computer - and even more so
> if you have to ask about it like you just have. heh

It may be a bad idea, but the alternative is to use easy to remember
passwords, and probably use the same password (or a small number of
passwords) over and over again for every account.

I'm managing 139 accounts/passwords at work, plus another set at home. I
really have to have automation. I wrote my own program that uses AES
encryption to manage the acounts/passwords, and I'm not worried about
that getting hacked. If I had to use something available commercially,
I'd look for AES (Rijndael) or Blowfish encryption, and pick a very
random key.

Kevin

>
> Searching the Internet for the application you mention - it seems a bit "new
> and untested" to give a real opinion. Not sure if this is because of the
> general "don't store you passwords that way" rule, or if the application is
> just that new.
>
Top