Web based password safe
Java Other
Switch branches/tags
Nothing to show
Latest commit 6edf8c4 Sep 6, 2017 @alsutton alsutton Convert to valid HTML5
Resolve issue #1 by removing any MS-Word export specific data and ensuring the HTML is HTML5 compliant.
Permalink
Failed to load latest commit information.
docs Convert to valid HTML5 Sep 6, 2017
gradle/wrapper Initial Commit Sep 2, 2017
src Initial Commit Sep 2, 2017
.gitattributes Initial Commit Sep 2, 2017
.gitignore Initial Commit Sep 2, 2017
LICENSE Initial Commit Sep 2, 2017
README.MD Initial Commit Sep 2, 2017
build.gradle Initial Commit Sep 2, 2017
gradlew Initial Commit Sep 2, 2017
gradlew.bat Initial Commit Sep 2, 2017

README.MD

Enterprise Password Safe

License

The Copyright (c) 2017 Carbon Security Ltd. opensource@carbonsecurity.co.uk and contributors

Permission to use, copy, modify, and distribute this software for any purpose with or without fee is hereby granted, provided that the above copyright notice and this permission notice appear in all copies.

THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.

What is it?

The Enterprise Password Safe was sold by several companies from the mid-2000's through to 2014 and was used by customers from small businesses to multi-nationals and parts of government agencies around the globe. It is a multi-user, audited password storage solution with user and group access controls.

How does it work?

The Enterprise Password Safe (EPS) uses a cryptographic chain to enforce password access; A key is derived from the users password which decrypts a user specific AES key. The user key is then used to decrypt the AES keys for the groups the user belongs to, and then the users AES key and the AES keys of the groups they belong to, can be used to decrypt the RSA public key (for read access), and RSA private key (for write access) associated with a password.

The key pair for each password is different, and the keys are encrypted with each group or user AES key that have access rules for that password.

More details

The EPS is written in Java and built using Gradle. It uses JDBC to talk to the database which is used to store the information via a custom database abstraction layer which handles the translation of EPS requests into a database specific format. The EPS includes support for Apache Derby, DB2, HSQLDB, JavaDB, MySQL, Oracle 8i, Postgresql, and SQL Server.

Contributions

Pull requests are welcome. If you're planning to implement a new feature or work on a change, please make sure you open an issue for it and comment that you're working on it to avoid multiple people working on the same thing and producing incompatible implementations.