Sep 25, 2011

sCrib and KeyPass

A new plugin - OtpKeyProv - for the KeyPass password safe has been published. It protects the password database with one time passwords.
Category: General
Posted by: dc352

Smart Architects contacted Dominik Reichl, the author of the KeyPass password safe to find out if there is a space for co-operation. We believed that our sCrib tokens could be easily integrated with KeyPass and Dominik shared our enthusiasm.


The new plugin can be downloaded from here - OtpKeyProv download. If you are already using KeyPass, just unzip the zip file in the KeyPass main directory. The plugin will be added to your KeyPass next time it is launched.


Use of the sCrib and its OTP generator will protect you against viruses and keyloggers as the master password is changing with every entry. One OTP code does not provide enough entropy against off-line brute force attacks so one has to use at least 3 OTP codes to open the database.


KeePass is a free open source password manager, which helps you to manage your passwords in a secure way. You can put all your passwords in one database, which is locked with one master key or a key file. So you only have to remember one single master password or select the key file to unlock the whole database. The databases are encrypted using the best and most secure encryption algorithms currently known (AES and Twofish). There have been almost 5,000,000 downloads of KeyPass 2.x in the last 12 months.

sCrib is a hardware authentication token that generates, stores and types static passwords, or OTP codes. It emulates a keyboard so it can be used to logon to BIOS, operating systems, as well as web applications. The set of 12 strong passwords can be boosted by using the SuperGenPass bookmarklet to provide an unlimited number of passwords for web applications.