Original author(s) | Development status Active | |
Developer(s) Rony Shapiro, volunteers Initial release January 15, 2002 (2002-01-15) Stable release 3.41 / November 26, 2016;
3 months ago (2016-11-26) Repository sourceforge.net/p/passwordsafe/git-code/ci/master/tree/ | ||
Password Safe is a free and open-source password manager program for use with Microsoft Windows. A beta version is also available for Ubuntu (including the Kubuntu and Xubuntu derivatives), Debian and FreeBSD operating systems. A Java-based version is also available on SourceForge. On its page you can find links to unofficial releases running under Android, BlackBerry and other mobile OS.
Contents
- History
- Design
- Features
- Password management
- Import and export
- File encryption
- Password generator
- Cryptography
- Reception
- References
The port for OS X and iOS, pwSafe (not to be confused with "pwsafe password database", a compatible unix commandline program), is compatible with Password Safe files. It uses iCloud or Dropbox to keep password databases synced between iOS devices and computers.
History
The program was initiated by Bruce Schneier at Counterpane Systems, and is now hosted on SourceForge and developed by a group of volunteers.
Design
After filling in the master password the user has access to all account data entered and saved previously. The data can be organized by categories, searched, and sorted based on references which are easy for the user to remember. The key combination Ctrl+C copies the password of a selected account into the clipboard, Ctrl+U copies user ID. The program can be set to minimize automatically after a period of idle time and clears the clipboard. It is possible to compare and synchronize two different password databases.
Features
Note: All uncited information in this section is sourced from the official Help file included with the applicationPassword management
Stored passwords can be sectioned into groups and subgroups in a tree structure.
Changes to entries can be tracked, including a history of previous passwords, the creation time, modification time, last access time, and expiration time of each password stored. Text notes can be entered with the password details.
Import and export
The password list can be exported to various file formats including TXT, XML and previous versions of Password Safe. Password Safe also supports importing these files, as well as TXT and CSV Files which were exported from KeePass version 1.x (V1). KeePass version 2.x (V2) allows databases to be exported as a KeePass V1 database, which in turn can be imported to Password Safe.
Password Safe cannot directly import a XML file exported by KeePass V1 or V2, as the fields are too different. However, the Help file provides instructions for processing an exported XML file with one of multiple XSLT files (included with Password Safe) which will produce a Password Safe compatible XML file that can then be imported.
File encryption
Password Safe can encrypt any file using a key derived from a passphrase provided by the user through the command-line interface.
Password generator
The software features a built-in password generator that generates random passwords. The user may also designate parameters for password generation (length, character set, etc.), creating a "Named Password Policy" by which different passwords can be created.
Cryptography
The original Password Safe was built on Bruce Schneier's Blowfish encryption algorithm. Rony Shapiro implemented Twofish encryption along with other improvements to the 3.xx series of Password Safe. The keys are derived using an equivalent of PBKDF2 with SHA-256 and a configurable number of iterations, currently set at 2048.
Reception
Reviewers have highlighted the program's simplicity as its best feature.