KeePass: use a key file or a regular password?

passwords encryption password-management keepass
29,616

Solution 1

Regarding the ability to use 'key files' with KeePass.

In order to generate the 256-bit key for the block ciphers, the Secure Hash Algorithm SHA-256 is used. This algorithm compresses the user key provided by the user (consisting of password and/or key file) to a fixed-size key of 256 bits. This transformation is one-way, i.e. it is computationally infeasible to invert the hash function or find a second message that compresses to the same hash.

The recently discovered attack against SHA-1 doesn't affect the security of SHA-256. SHA-256 is still considered as being very secure.

(there is another recent update, but I think such news are not relevant here).
To the point at hand,

Key Derivation:
If only a password is used (i.e. no key file), the password plus a 128-bit random salt are hashed using SHA-256 to form the final key (but note there is some preprocessing: Protection against Dictionary Attacks). The random salt prevents attacks that are based on pre-computed hashes.

When using both password and key file, the final key is derived as follows: SHA-256(SHA-256(password), key file contents), i.e. the hash of the master password is concatenated with the key file bytes and the resulting byte string is hashed with SHA-256 again. If the key file doesn't contain exactly 32 bytes (256 bits), they are hashed with SHA-256, too, to form a 256-bit key. The formula above then changes to: SHA-256(SHA-256(password), SHA-256(key file contents)).

If you think your password is going to be a bit weaker (and better for your memory),
the key file is a good second factor.
So, use both (together).

Solution 2

The whole point is to keep your passwords secure, so this is a no-brainer: password. If you use a key file and you lose control of your password database, your passwords are all exposed.

Solution 3

Use both. Keep your key file in your flash drive and bring it allways with you. But not somwhere on desktop (it is the same as writing password on sticky notes). I'm using this way to my encrypted HDD partition (with truecrypt). So if anybody still somehow get your password, they need keyfile too.

Share:
29,616

Related videos on Youtube

MT.
Author by

MT.

Lua is highly underrated! "This is a question and answer site. Not a "complex question, insightful answer that grows you as a person site." People should be able to ask simple questions with simple answers, that just may so happen to be spoon-fed. A lot of people just want to write code that works. Not be empowered. – Owen Sep 19 '08 at 21:23"

Updated on September 17, 2022

Comments

  • MT.
    MT. almost 2 years

    I'm setting up a KeePass database and it offers the ability to use a key file, which it says is more secure because it can use a longer and more complex password but is easier to break because you only need the key file to open the database. I'll only be using the key file on 2 computers (one desktop and one laptop), wo which is the best option?

    Note that it's definitely more appealing to use the key file for me because i have a hard time remembering anything close to a random password.

  • Norman
    Norman almost 15 years
    You are always going to be at risk if you store your 'password' somewhere (be it on a sticky note or as a key file). So long as you keep the password in your head (and it is complex enough) then you should be better off.
  • jasonh
    jasonh almost 15 years
    I'd take a look at Steve Gibson's commentary on the matter: grc.com/sn/sn-182.txt
  • nik
    nik almost 15 years
    @jasonh, Wow! you vote me down for suggesting two-factor security, with a Gibson interview reference you have taken from his own site (yeah, I've heard Leo before, fine). Please add your points here as a new answer so people can benefit.
  • nik
    nik almost 15 years
    When using both password and key file, the final key is derived as follows: SHA-256(SHA-256(password), key file contents). Access to file alone is useless. But, knowledge of the password without the file contents makes breaking it more difficult. And, the file also adds a strong salt to your password.
  • jasonh
    jasonh almost 15 years
    Yes, I did. I understand having a second factor, but it's useless here. The keyfile would be kept virtually with the password database itself if you're a mobile user. If you lose control of the database, you've probably lost control of the key file too. As Steve Gibson notes, a key file isn't giving you much additional security, if any.
  • jasonh
    jasonh almost 15 years
    A second factor is useful in the example of the PayPal football. In this case you have a physical device and a password. If your password becomes compromised, there is no reason to believe that your football is missing at the same time by default. In comparison, when the goods are a password database and the securing mechanism is simply another file that resides alongside the database itself, what good is it? None.
  • Torbjørn
    Torbjørn almost 15 years
    Just make sure to have a backup of your keyfile, as well as the password database itself. If either one of them ever gets corrupted you will need a fresh backup.
  • nik
    nik almost 15 years
    @jasonh, I read your comments quite late. But, understood your contention. My expectation is that the key file is either not carried with the DB or is encrypted separately. I agree to the weakness of carrying it in clear with the DB -- the second-factor will be lost.
  • Piotr Kula
    Piotr Kula over 11 years
    +1 for the use key file and master password. So even if they get the db and key file you just have to remember 1 long password. They cannot hack brains yet so get some torture resistance training instead.
  • kluka
    kluka almost 11 years
    I would consider this bad security practice on many levels.
  • ctrl-alt-delor
    ctrl-alt-delor over 10 years
    Actually, hacking brains is usually how it is done. I can guess your password, because it is obvious.
  • nanker
    nanker over 7 years
    Yeah pretty useless and most suredly dangerous; especially the part about simply opening your password file on a computer that "is not my personal one." Sheesh. Bad bad as in I can't express how very bad this practice is. I have a work laptop that goes everywhere with me and so while being convenient, because other people (as in IT dept.) "maintain" it, I don't even trust that to store or even open my personal password db on.
  • nanker
    nanker over 7 years
    I keep my key file on a LUKS usb drive, so I need a passphrase to open the usb drive but then only the keyfile to open my passwd db on my laptop. Even if the usb somehow gets stolen with my computer the keyfile is still LUKS encrypted. But that scenario is not as likely as someone simply stealing either one or the other (computer or usb drive), neither of which on its own is any good to anyone, as far as cracking my passwd db.
  • RED_
    RED_ over 7 years
    @nanker how do you use your personal password db on your work laptop then? Do you have both the keyfile and database on a usb key?
  • nanker
    nanker over 7 years
    @RED_ I don't ever open my personal keepass DB on my work laptop, no matter how convenient it may seem to be at times. The laptop is pretty loaded for my day-to-day routines and although I have previously tried to determine what all the service running on the laptop are I haven't yet been able to nail them all down. So I can't and don't trust it enough to open my keepass DB on. Call me paranoid I guess, but I feel I am in an informed, happy place as far as my password security goes.
  • Mokubai
    Mokubai about 7 years
    This doesn't answer the (very specific) question that was asked.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How does Google Chrome store passwords?
Best way to share certain passwords stored in Keepass?
How to use password managers without using the clipboard?
How to properly store a PBKDF2 password hash
RAR passwords, why don't rainbow tables work?
Drupal 7 password hash
How can I encrypt password in a batch file?
How to hash a password with SHA512
How to encrypt form data?
How to use Keychain for saving password like GenericKeychain sample code