My fancy new password storage and sharing webapp is ready to be tried out.
http://sharedpass.com/ (redirects to an SSL'd site)
I intend to build a desktop app to interface with it at some point, but not today. I'd also like a Palm app (or whatever phone I end up with when I finally do make it).
The interface is currently a bit ugly. I'm not going to spend a bunch of time on the interface until I get feedback on the usage of the system. I want feedback on the UI, too, but mostly the functionality.
You can create new entries as well as delete/remove/edit/share/import/export/revoke entries. Delete will delete it from the database, including from everyone you've shared it with. Remove just removes it for you. When you click the button to do either, it'll tell you what happens.
On each page, there is a username/password form. You must put in your username/password for each page if you want to perform an action. Because I treat your password as something that should never be recorded (for security reasons) and the only thing that can unlock your keys is your password (combined with other things), I can't use a standard session management system to keep you logged in.
There is no logout. There isn't a session to logout of, so there is no need to logout. Just close the window or tab. It's always best to close the browser if you want to be most secure, just in case the browser cached a page.
Feel free to use it. I promise that I have absolutely no access to your passwords. They're all encrypted (if you check the "encrypted" checkbox on that field) and require your valid login to unlock the key that decrypts the data. Without your username/password, I can't access it. Neither can anyone that gets access to the database.
Technically someone could hack the system, record all incoming passwords, and use them to unlock the keys. Doing that would require that they modify the SharedPass app, which is likely to be noticed. No promises on that yet. It's not marketable yet, but it does function.
Let me know if you've used it and your thoughts. Remember: I didn't intend for it to look nice yet.
http://sharedpass.com/ (redirects to an SSL'd site)
I intend to build a desktop app to interface with it at some point, but not today. I'd also like a Palm app (or whatever phone I end up with when I finally do make it).
The interface is currently a bit ugly. I'm not going to spend a bunch of time on the interface until I get feedback on the usage of the system. I want feedback on the UI, too, but mostly the functionality.
You can create new entries as well as delete/remove/edit/share/import/export/revoke entries. Delete will delete it from the database, including from everyone you've shared it with. Remove just removes it for you. When you click the button to do either, it'll tell you what happens.
On each page, there is a username/password form. You must put in your username/password for each page if you want to perform an action. Because I treat your password as something that should never be recorded (for security reasons) and the only thing that can unlock your keys is your password (combined with other things), I can't use a standard session management system to keep you logged in.
There is no logout. There isn't a session to logout of, so there is no need to logout. Just close the window or tab. It's always best to close the browser if you want to be most secure, just in case the browser cached a page.
Feel free to use it. I promise that I have absolutely no access to your passwords. They're all encrypted (if you check the "encrypted" checkbox on that field) and require your valid login to unlock the key that decrypts the data. Without your username/password, I can't access it. Neither can anyone that gets access to the database.
Technically someone could hack the system, record all incoming passwords, and use them to unlock the keys. Doing that would require that they modify the SharedPass app, which is likely to be noticed. No promises on that yet. It's not marketable yet, but it does function.
Let me know if you've used it and your thoughts. Remember: I didn't intend for it to look nice yet.
