Solved

Help with final year project (Password Database)

Posted on 2008-10-25
12
375 Views
Last Modified: 2013-11-17
Hello,

Im trying to finalise my final year project. Ive almost decided on a program that can securely store passwords.

Whilst my tutor is happy with this idea he has stated that I need to spice it up abit by adding some more advanced features.

Does anybody have any suggestions of what else I could add to this base idea?

Any suggestions greatly appreciated.

Thanks.
0
Comment
Question by:andyw27
  • 2
  • 2
  • 2
  • +5
12 Comments
 
LVL 11

Expert Comment

by:jgmontgo
ID: 22802327
Yea, I would encrypt the password database and then make sure the program is password protected itself.
0
 

Author Comment

by:andyw27
ID: 22802331
sound advice
0
 
LVL 62

Accepted Solution

by:
☠ MASQ ☠ earned 500 total points
ID: 22802337
Can you add some portability to it?

Put it on a memory stick and - as long as you have the master password - it doesn't much matter what PC or browser you are using your credentials are passed to the correct pages - and removed as the stick is removed.
0
 
LVL 11

Expert Comment

by:jgmontgo
ID: 22802342
I like your idea MASQUERAID, very nice!
 
0
 
LVL 10

Expert Comment

by:peetm
ID: 22802355
'final year' - at what level?
0
Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

 

Author Comment

by:andyw27
ID: 22802372

Degree level.

Perhaps I've mislead slightly.  I'm not creating database (such as access one).

My intention is to have a program that a user can safely store all their passwords into. This by itself is not complex enough and thus my tutor is reccomending that I add extra dimension to it.

One of suggestions he put forward was linking the program with a memory stick and using it as dongle. So to enable use of the program you would need to the master password and also the USB stick. How this would work in practice I've yet to figure out.
0
 
LVL 10

Expert Comment

by:peetm
ID: 22802442
Could you perhaps write the program in a language like ML/Haskell/F#, and provide some proofs, i.e., I'm sure the 'program' should be enough if demonstrated enough CS concepts, understanding, use and implementation.
0
 
LVL 12

Expert Comment

by:hfraser
ID: 22803117
How about adding support for an escrow account. That's a second account (usually a security administrator) that also has the ability to access the secured contents. It's used in the situation where, for instance, the owner of some important data that's encrypted is not available (ie. perhaps deceased).
0
 
LVL 27

Expert Comment

by:Tolomir
ID: 22804822
No spoiler here just pick some suggestions from this feature list:

http://www.keepass.info/features.html

Tolomir
0
 
LVL 7

Expert Comment

by:kguy18
ID: 22826034
Take a look at this persons question: http://www.experts-exchange.com/Programming/Project_Management/Q__23686004.html

Might be able to integrate some features... Good Luck!
0
 
LVL 17

Expert Comment

by:RDAdams
ID: 22877607
Add a secure notes feature.  Just for misc. info.
Allow it to integrate with outlook/IE/firefox etc.  Ie enter your password key once per session then it works until you manually lock it or log out. (not locked in screen saver mode)

0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

SSL stands for “Secure Sockets Layer” and an SSL certificate is a critical component to keeping your website safe, secured, and compliant. Any ecommerce website must have an SSL certificate to ensure the safe handling of sensitive information like…
This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
The viewer will learn how to successfully download and install the SARDU utility on Windows 8, without downloading adware.
Saved searches can save you time by quickly referencing commonly searched terms on any topic. Whether you are looking for questions you can answer or hoping to learn about a specific issue, a saved search can help you get the most out of your time o…

919 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now