Keepass2Android Password Safe

Keepass2Android Password Safe


Keepass2Android is an open source password manager application for Android. It reads and writes .kdbx-files, the database format used by the popular KeePass 2.x Password Safe for Windows and other desktop operating systems.

The user interface is based on Keepassdroid (by Brian Pellin), ported from Java to Mono for Android. The backend uses the original KeePass libraries to handle file access to ensure file format compatibility.

Main features of the App are

* read/write support for .kdbx (KeePass 2.x) files
* integrates with nearly every Android browser (see below)
* QuickUnlock: Unlock your database once with your full password, re-open it by typing just a few characters (see below)
* Access files from the cloud or the web (Dropbox, Google Drive, SkyDrive, FTP, WebDAV). You can use "Keepass2Android Offline" if you don't need this feature.
* Integrated Soft-Keyboard: Switch to this keyboard for entering user credentials. This shields you from clipboard based password sniffers (see below)
* support for editing entries including additional string fields, file attachments, tags etc.
* search dialog with all search options from KeePass 2.x.

Required privileges:
* Access SD Card
* Access Internet (required for accessing files via FTP/WebDav). Install "Keepass2Android Offline" if you don't want to grant this privilege.
* Vibrate

Bug reports and suggestions: http://keepass2android.codeplex.com/

== Browser integration ==
If you need to lookup a password for a webpage, go to Menu/Share... and select Keepass2Android. This will
* bring up a screen to load/unlock a database if no database is loaded and unlocked
* go to the Search Results screen displaying all entries for the currently visited URL
- or -
* directly offer the Copy Username/Password notifications if exactly one entry matches the currently visited URL

== QuickUnlock ==
You should protect your password database with a strong (i.e. random and LONG) password including upper and lower case as well as numbers and special characters. Typing such a password on a mobile phone every time you unlock your database is time-consuming and error-prone. The KP2A solution is QuickUnlock:
* Use a strong password for your database
* Load your database and type the strong password once. Enable QuickUnlock.
* The application is locked after the time specified in the settings
* If you want to re-open your database, you can type just a few characters (by default, the last 3 characters of your password) to unlock quickly and easily!
* If the wrong QuickUnlock key is entered, the database is locked and the full password is required to re-open.

Is this safe? First: it allows you to use a really strong password, this increases safety in case someone gets your database file. Second: If you loose your phone and someone tries to open the password database, the attacker has exactly one chance to make use of QuickUnlock. When using 3 characters and assuming 70 characters in the set of possible characters, the attacker has a 0.0003% chance of opening the file. If this sounds still too much for you, choose 4 or more characters in the settings.

QuickUnlock requires an icon in the notification area. This is because Android would kill Keepass2Android too often without this icon. It does not require battery power.

== Keepass2Android Keyboard ==
A German research team has demonstrated that clipboard-based access of credentials as used by most Android password managers is not safe: Every app on your phone can register for changes of the clipboard and thus be notified when you copy your passwords from the password manager to your clipboard. In order to protect against this kind of attack, you should use the Keepass2Android keyboard: When you select an entry, a notification will appear in the notification bar. This notification lets you switch to the KP2A keyboard. ON this keyboard, click the KP2A symbol to "type" your credentials. Click the keyboard key to switch back to your favorite keyboard.

Recent changes:
* added plug-in support: See settings for how to get plug-ins!
published QR plug-in and InputStick plugin
* added TOTP support (use with KeeOTP or TrayTotp)
* app should no longer be killed by Android when database is open
* display group names in search results view
* added context menu in search results view
* added option to display group name in entry view
* support KeeChallenge (with Yubikey NEO)
* added option to disable the "donate" option
* QuickUnlock icon now hidden on Android 4.2+
Add to list
Free
92
4.6
User ratings
5191
Installs
100,000+
Concerns
1
File size
16655 kb
Screenshots
Video of Keepass2Android Password Safe Screenshot of Keepass2Android Password Safe Screenshot of Keepass2Android Password Safe Screenshot of Keepass2Android Password Safe Screenshot of Keepass2Android Password Safe Screenshot of Keepass2Android Password Safe Screenshot of Keepass2Android Password Safe Screenshot of Keepass2Android Password Safe

About Keepass2Android Password Safe
Keepass2Android is an open source password manager application for Android. It reads and writes .kdbx-files, the database format used by the popular KeePass 2.x Password Safe for Windows and other desktop operating systems.

The user interface is based on Keepassdroid (by Brian Pellin), ported from Java to Mono for Android. The backend uses the original KeePass libraries to handle file access to ensure file format compatibility.

Main features of the App are

* read/write support for .kdbx (KeePass 2.x) files
* integrates with nearly every Android browser (see below)
* QuickUnlock: Unlock your database once with your full password, re-open it by typing just a few characters (see below)
* Access files from the cloud or the web (Dropbox, Google Drive, SkyDrive, FTP, WebDAV). You can use "Keepass2Android Offline" if you don't need this feature.
* Integrated Soft-Keyboard: Switch to this keyboard for entering user credentials. This shields you from clipboard based password sniffers (see below)
* support for editing entries including additional string fields, file attachments, tags etc.
* search dialog with all search options from KeePass 2.x.

Required privileges:
* Access SD Card
* Access Internet (required for accessing files via FTP/WebDav). Install "Keepass2Android Offline" if you don't want to grant this privilege.
* Vibrate

Bug reports and suggestions: http://keepass2android.codeplex.com/

== Browser integration ==
If you need to lookup a password for a webpage, go to Menu/Share... and select Keepass2Android. This will
* bring up a screen to load/unlock a database if no database is loaded and unlocked
* go to the Search Results screen displaying all entries for the currently visited URL
- or -
* directly offer the Copy Username/Password notifications if exactly one entry matches the currently visited URL

== QuickUnlock ==
You should protect your password database with a strong (i.e. random and LONG) password including upper and lower case as well as numbers and special characters. Typing such a password on a mobile phone every time you unlock your database is time-consuming and error-prone. The KP2A solution is QuickUnlock:
* Use a strong password for your database
* Load your database and type the strong password once. Enable QuickUnlock.
* The application is locked after the time specified in the settings
* If you want to re-open your database, you can type just a few characters (by default, the last 3 characters of your password) to unlock quickly and easily!
* If the wrong QuickUnlock key is entered, the database is locked and the full password is required to re-open.

Is this safe? First: it allows you to use a really strong password, this increases safety in case someone gets your database file. Second: If you loose your phone and someone tries to open the password database, the attacker has exactly one chance to make use of QuickUnlock. When using 3 characters and assuming 70 characters in the set of possible characters, the attacker has a 0.0003% chance of opening the file. If this sounds still too much for you, choose 4 or more characters in the settings.

QuickUnlock requires an icon in the notification area. This is because Android would kill Keepass2Android too often without this icon. It does not require battery power.

== Keepass2Android Keyboard ==
A German research team has demonstrated that clipboard-based access of credentials as used by most Android password managers is not safe: Every app on your phone can register for changes of the clipboard and thus be notified when you copy your passwords from the password manager to your clipboard. In order to protect against this kind of attack, you should use the Keepass2Android keyboard: When you select an entry, a notification will appear in the notification bar. This notification lets you switch to the KP2A keyboard. ON this keyboard, click the KP2A symbol to "type" your credentials. Click the keyboard key to switch back to your favorite keyboard.

Recent changes:
* added plug-in support: See settings for how to get plug-ins!
published QR plug-in and InputStick plugin
* added TOTP support (use with KeeOTP or TrayTotp)
* app should no longer be killed by Android when database is open
* display group names in search results view
* added context menu in search results view
* added option to display group name in entry view
* support KeeChallenge (with Yubikey NEO)
* added option to disable the "donate" option
* QuickUnlock icon now hidden on Android 4.2+

Visit Website
User reviews of Keepass2Android Password Safe
Write the first review for this app!
Android Market Comments
A Google User
Tuesday 6:16 PM
One of the best and most trust worthy developers in all of play store! A++
A Google User
Tuesday 9:40 AM
Great Working fine on Galaxy Note 2, using Dropbox for key file and database. It was a bit clunky until I got faster with the app-switcher (long press home).
A Google User
Monday 5:08 AM
Impressed so far Makes creating and using very strong passwords a snap. The quick unlock feature is brilliant. Nifty how you can bypass the (vulnerable) system clipboard and use the built-in keypad to paste a user ID and password — but note that (contrary to screenshots here) you have to long-press the KP2A key to see the "keyboard key" that lets you return to your usual input method. Yes, the app has some geeky features, but basic usage is simple; the product description on this page tells you just about all you need to know. Pity that my donation doesn't let me immediately turn off the nagging about beer.
A Google User
Monday 3:32 AM
best password manager this is the best password manager accessible from anywhere
A Google User
Sunday 8:27 PM
Does not work with key file I can use the open file icon to select the key file, but th e program keeps telling me the key files doesn't exist. It's a known issue.