#1727 [Plugin Idea] obfuscate database in jpg images

KeePass
open
nobody
None
5
2014-01-06
2013-04-17
Babar
No

It would be nice if we could have an option to obfuscate the database in a jpg image, saving and loading the database from there.
Indeed more and more people are storing their database on online providers, on their phones,... and it increases the chance of the database to be stolen.
This would add an additional layer of security.

Discussion

  • wellread1
    wellread1
    2013-04-17

    Steganography seems unlikely to be implemented into KeePass in the near future. If you are interested in using steganography to hide your database your best bet is probably to try existing steganography tools.

    If you are interested in techniques to increase the online security of KeePass databases without using very large passwords, the most general technique is to employ a strong key file that is kept offline. If you need additional assistance please post in the help or open discussion forums.

     
  • Dominik Reichl
    Dominik Reichl
    2013-05-21

    • summary: obfuscate database in jpg images --> [Plugin Idea] obfuscate database in jpg images
     
  • Babar
    Babar
    2013-09-27

    Ok, that is a shame though, it could greatly improve the security of the database.

    I personally use very strong password, but nothing garantee that tomorrow, someone come with a way to break in, in 5 minutes. No ones garantee that computing power, and publicly available cloud computing won't allow anyone to break in, in 5 minutes, or that someone write a malware that distribute the database on all infected computers to break it faster,...

    If you obfuscate your database in several images, you add a lot of security, much more than a good password alone.

    -First the persons seeking your password database must know you are hidding it, you could even leave a fake Kpass database that would store un-important passwords or deprecated ones (if you are really paranoid) And that - Alone- is already a huge improvement.
    Once they know you are using images
    -They must know in which images you are hidding the database
    -they must know how it is distributed in the pixels
    -they must know in which order to read the images
    -And finally they must know/break the password to decrypt the file

    With digital era people tend to have thousands of images stored on their computer, a small combination of image is as strong as a good password.

    Uploading the database from your computer to the hacker computer will also be more complicated, (especially if you start storing the database in videos ). As the more time it takes the more likely you are to find out, or the more likely an antivirus is to block it,...

    Even if the computing power increase enough to easily break in the database, or if someone finds a way to break the crypting technic, using obuscation may save your database.

    Having to deal with 2 tools instead of one is not user friendly, so I will wait.

     
    Last edit: Babar 2013-09-27
  • Paul
    Paul
    2013-10-01

    Obfuscation is not security, so I doubt this will happen.

    cheers, Paul

     
  • kanelbullar
    kanelbullar
    2014-01-06

    Arguably, obfuscation indeed does not contribute to a better security.

    The idea initially suggested in these thread was to be able to read/write the database from different filetypes (e.g much how we can hide an archive in a jpeg file). For novelty purposes only, would it be simple enough to implement the change so that it may be worth it?

    My guess is that it wouldn't be worth it, as there is no real purpose (unless excessively simple to implement, and then again it would be for amusement).