en | Technical | KeePassRPC | Security levels

Chris Tomlinson edited this page Apr 23, 2018 · 5 revisions

Kee browser addon

There is updated documentation available on the Kee community forum.

Other clients

When KeeFox connects to KeePass with the KeePassRPC plugin, it encrypts the communication between Firefox and KeePass to help protect your passwords from some types of malware

For this encryption to work, there needs to be a secret key/password that is shared between the two communicating partners - in our case that is the KeeFox Firefox add-on and the KeePassRPC KeePass plugin.

Both ends of the connection need to store the secret key in a safe place; the security level you choose will affect where and how these keys are stored.

No matter which security level you use, the actual messages travelling between Firefox and KeePass are encrypted with the highest available security.

Which security level should I choose?

Most people will be happiest with the medium security level - it provides a good balance of security and convenience. This is a similar level of security that version 1.2 of KeePassRPC offered.

If you want higher security you can either:

  1. Enable high security mode which will ask you to type a new short password every time you connect Firefox to KeePass. A new secret key is created from each password you type.

  2. Adjust the "Authorisation expiry time" to decrease the length of time that each secret key is used for. The default expiry time is one year (except in version 1.3.0 where a mistake has set this expiry time to 2 weeks).

You should only choose the low security mode if you are performing a short-term test to diagnose problems that prevent you from using a higher security level.

Technical detail about exactly what is different between each security level can be found here

Kee 2.0 is now released

This manual was written for KeeFox 1.7 and earlier. Some of it will still apply to Kee 2.0 but much of it will not so USE CAUTION.

In the coming months we will update this manual to more accurately reflect the things it is still useful for - namely old versions of Firefox, other browsers based on similar technology and Thunderbird.

At the same time, we'll continue developing the replacement manual for Kee 2.0.

For Kee 2.0 support, make sure you've ready the information on the new community forum before diving into this manual.

Clone this wiki locally
You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session.
Press h to open a hovercard with more details.