Skip to content

How master password is stored in memory? #83

New issue
New issue
Closed
#104
Closed
How master password is stored in memory?#83
#104
@4-FLOSS-Free-Libre-Open-Source-Software

Description

@4-FLOSS-Free-Libre-Open-Source-Software
4-FLOSS-Free-Libre-Open-Source-Software
opened on Nov 30, 2021

Missing detailed Description of how and when the master password is stored in memory.

  1. Is the master password still stored in memory for usage of only QuickUnlock Feature while check "Store keys in the Windows Credential Manager" or no? Does it prevent it from storing in memory that can be accessed from outside Keepass?

  2. How is the master password encrypted in memory ?

Additional context

https://github.com/sirAndros/KeePassWinHello#key-storage

KeePassWinHello/ReadMe.md

Lines 56 to 59 in b168c5a

Key storage
-----------
By default this plugin holds an encrypted master password in memory and removes it upon KeePass closing. In order to be able to unlock your database via Windows Hello authentication in between KeePass launches you may check "Store keys in the Windows Credential Manager" on in the Options dialog. This will prompts you for creating a persistent key signed with your biometry via Windows Hello. The key is used to encrypt master passwords for securely storing them in the Windows Credential Manager.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions