OffPass/offpass-tech
2
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Add optional fields

Browse Source
This commit is contained in:
Nicolas Klier
2020-06-23 16:25:16 +02:00
parent 26fded0c41
commit 6099c81b9d
1 changed files with 11 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
Schema and Encryption.md
View File

@@ -6,7 +6,7 @@ OffPass uses **AES-256 CBC** as encrpytion. The key is calculated by the **Argon
### Passphrase ### Passphrase
The passphrase is the actual key which is used for encrpytion. But we don't use your entered master password directly. The passphrase is the actual key which is used for encrpytion. But we don't use your entered master password directly.
We hash it with `Argon2i` about 25 times. This gives use an output like this: `29dbf5392f13f36d7e9509b1a5c9add0d6a8e2625b5e84ab4d1df8da6063625d`. We append a salt, which is a random sequence of characters, to your passphrase and then we hash it with `Argon2i` about 25 times. This gives use an output like this: `29dbf5392f13f36d7e9509b1a5c9add0d6a8e2625b5e84ab4d1df8da6063625d`.
This value will be used as encryption key, not your plain password. This value will be used as encryption key, not your plain password.
The creation of such a hash takes about **more then one second**. The creation of such a hash takes about **more then one second**.
@@ -30,11 +30,20 @@ title|username|password|email|website_url|(custom1)data1|(custom2)data2
Two examples: Two examples:
```txt ```txt
Main Steam Account|mondei1|super_secret_example123|info@example.de|https://store.steampowered.com/login/|(2fa_backup)R1337 Main Steam Account|mondei1|super_secret_example123|info@example.de|https://store.steampowered.com/login/|(2fa_b)R1337
ProtonMail||mail_pw123|klier.nicolas@protonmail.com|| ProtonMail||mail_pw123|klier.nicolas@protonmail.com||
``` ```
### Optional fields
You can either define your own custom fields or use optional fields, which OffPass treats differently.
List of optional fields:
* `2fa` - Two factor authentication secret that starts like otpauth://totp/...
* `2fa_b` - Backup codes for two factor authentication
* `email_b` - Backup email address
### Compression ### Compression
It is possible to compress QR-Codes. Instead of writing all data to the QR-Code you can write random strings (=key) to it. It is possible to compress QR-Codes. Instead of writing all data to the QR-Code you can write random strings (=key) to it.
OffPass itself holds a database of those random strings and the corresponding encrypted value. OffPass itself holds a database of those random strings and the corresponding encrypted value.