I think that support for X509 certificates would be a
feature that could be a great value for sdm.
Also, it would be a very porper way of getting
differentiation. I have been looking for an open or,
preferably, GNU password manager wich supports X509
certs and I haven't found anyone. I have found only
one but it's a commercial and you have to buy it.
The idea would be to use de public key of the
certificate for encryption and the private key of the
certificate for decryption. So no additional master
password would be necessary to cypher all the sdm data.
What do you think about it? If you consider it could be
a good idea and need collaboration, I could collaborate
in the development of this feature.