Password-Manager | Overview and Comparsion

Generating a truly secure password is no easy task. Finely tuned software can make short work out of simple patterns, granting hackers access to your most sensitive data within a matter of seconds. The first line of defense for any password protection scheme lies in the ability of password generators to create complex codes from a jumble of mixed and matched letters, numbers, and symbols. Such codes are difficult to crack – and often just as difficult to remember. Password managers are valuable tools that aid in administering and saving such cumbersome passwords.

Whenever a bank, mail, or cloud account is hacked, the most common cause is nearly always the failure of the user to select a secure password to protect their most private information. It happens far too often that people select ‘123456’ or even ‘password’ which makes everything unimaginably easy for hackers. Another mistake that quickly leads to individuals’ downfall is the fact that they use the same password for everything in order to make life easier for themselves. The reason for such mistakes is the same in both cases –  creating a secure password as well as managing a large number of passwords both require quite a bit of effort.

Password manager tools solve these problems and have the potential to be an essential tool for people who use a lot of services that require registration and also wish to remain on the safe side. The automatic encryption of the passwords and database mean that your information is protected by the password manager, even if a hacker manages to gain access to your system.

A password manager is a tool that has the potential to make your day to day online transactions and general activities much more secure. If you are using a lot of applications that require a login and are also working with sensitive and classified information, then you will benefit from the protection offered by these practical safety programs and from the ease of the registration process. However, before you create a password system that is suitably tailored to all your needs, you first need to find the password manager that is right for you. Given the huge choice of options – both from the proprietary as well as the open source sector – this is something that is easier said than done.

In order to be able to find the right tool, you first need to consider which requirements the software needs to fulfill. An important factor to consider is whether the desired manager will run on a local computer or whether they will be used on a foreign device via the use of a mobile storage device (e.g. a USB stick). Another decisive factor is whether the program should also contain password generating function or not. The differences between the individual password managers also come down to the various algorithms that are used. Here is where personal preferences come into play –  in any case, you should definitely make sure that an up-to-date encryption process is in use.

At the end of the day, the storage location of the password database is a crucial criterion. Some programs file the passwords automatically in the supplier’s cloud. This means that they are constantly available. Maximum control over your own passwords can only come about if you use software that permits you to save locally on your own respective system.

KeePass makes it possible to encrypt the entire password database. For this the AES or the Twofish algorithm are available. When it comes to the protection of individual passwords, the hash algorithm SHA-256 is used. As a user you have three possibilities for accessing the database: a classic master password, using a Windows account, or else the key file variable. According to the developer, the last of those options is the safest of the three solutions – although you will need to always have the key file with you, e.g. on a USB stick or a CD. Furthermore, it is also possible to have a combination of the main password and a key file. Other features of this particular password manager are as follows:

• Various export formats like TXT, HTML, XML, or CSV
• Over 35 import formats
• Categorization of passwords possible
• Time specifications for the following: the time of creation, the last modification, the last login, and the expiry of the password(s)
• Search and filter function
• Personal plugin framework available

KeePass leaves a good impression and not just because of its comprehensive database functions. Its integrated password generator allows you to quickly create secure passwords for logins. In the settings, you can determine the length of the generated passwords along with the underlying character set (uppercase letters, lowercase letters, numbers, special characters, etc.). Alternatively, you can also select a pattern or your own algorithm as a basis for these.

Password Safe is business-orientated software, something which is made clear by the diverse multi-use features that can be found in all of the professional versions of the software. In this case, we are talking about a centralized team database for which you can establish access controls based on someone’s role within the team or company. It is also possible to allow access to passwords only for the adequate reasons. AES-256 and RSA-4096 encryptions (for long-term locks) look after the safety of the database and passwords. The database connection can be done either by entering a master password or with the help of a key file. The more advanced professional packet allows you to combine the two processes with each other and subsequently increase the overall security levels. Here are a few of the other features that this password manager tool has to offer:

• Cloud-enabled via end to end encryption
• Database Firewall (only ‘Enterprise’  and ‘Enterprise Plus’)
• Adaptable dashboard
• Intelligent search and filter functions
• Virtual keyboard for keylogger protection
• Automatic live backups

The free version of Password Safe has various limitations (e.g. you can only enter 20 data sets including a maximum of one bank/TAN lists) meaning that it is not recommended for larger operations and undertakings. However, with this edition of the software, it is possible to generate new passwords. Compared to many other solutions, this password manager requires that passwords comply with predefined or self-configured policies.

The password database, which in LastPass is known as the ‚Vault‘, can be reached at any time and on each of your devices – either via the button in the browser bar or the web application. The encryption algorithm AES-256 and the hash function (PBKDF2 SHA-256) look after the protection of your passwords. The encryption always takes place at the level of the individual device. This means that the master password and coding/decoding key is always saved locally and is never sent to the LastPass server. On top of this, there is a choice of several solutions in order to implement multi-factor authentication – e.g. an SMS code or additional hardware components. And there are even more features offered by this online vault:

• Automatic password entry
• Support for fingerprint authentication
• Secure release of passwords
• Password vault synchronizes automatically with all devices
• Integrated password generator
• 1 GB encrypted file storage space (Premium edition)

The business package for companies makes LastPass gives you additional and centralized administrative tools for the management of various employee access rights. Each employee will also get their own individual password vault, which they manage for themselves. For larger firms, the Enterprise version also offers things like individual customer support along with other features. Additionally, it’s possible to configure your own security guidelines and get access to the password manager’s API.