Passwords on the Web with PassPack
For the past couple of days I have been trying out PassPack, an online service for storing passwords. I got to it via the blog of Nicola Mattina, who is responsible, together with two colleagues, for its development.
The project is interesting - storing passwords online to have them at hand anytime, anywhere - but even more interesting is the way: Nicola and co. have developed and used a Javascript library that allows data to be encrypted in the browser, before it is sent to the server. In this way, the data travels over the internet already safe from prying eyes and, above all, is not even readable on the server side: if the database were to be hacked, the bad guy would not be able to understand its contents at all.
Very wisely, the PassPack team relies on transparency: a service of this kind must leave no room for doubt, otherwise it is time wasted. If you want, try following Nicola's advice:
PassPack is online: test it and tell me what you think. If you feel like investing a bit of time, try also forcing it or imagining ways to breach its security.
The service, which is in beta, is worth a try.
Previous
December 14, 2006
Next
December 18, 2006