Forensically-sound analysis of security risks of using local password managers
Conference item
Authors | Gray, Joshua, Franqueira, Virginia N. L. and Yu, Yijun |
---|---|
Abstract | Password managers address the usability challenge of authentication, i.e., to manage the effort in creating, memorising, and entering complex passwords for an end-user. Offering features such as creating strong passwords, managing increasing number of complex passwords, and auto-filling of passwords for variable contexts, their security is as critical as the assets being protected by the passwords. Previous security risk analyses have focused primarily on cloud- and browser-based password managers, whilst the security risks of local password managers were left under-explored. Taking a systematic forensic analysis approach, this paper reports on a case study of three popular local password managers: KeePass (v2.28), Password Safe (v3.35.1) and RoboForm (v7.9.12). It revealed risks that either the master password or the content of the password database could be found unencrypted in Temp folders, Page files or Recycle bin, even after applications had been closed. As a consequence, an attacker or a malware with access to the computer on which the password managers were running may be able to steal sensitive information, even though these password managers are meant to keep the databases encrypted and protected at all times. These findings point to directions to mitigate the identified risks. |
Password managers address the usability challenge of authentication, i.e., to manage the effort in creating, memorising, and entering complex passwords for an end-user. Offering features such as creating strong passwords, managing increasing number of complex passwords, and auto-filling of passwords for variable contexts, their security is as critical as the assets being protected by the passwords. Previous security risk analyses have focused primarily on cloud- and browser-based password managers, whilst the security risks of local password managers | |
Keywords | Password managers; Authentication; Security risk; Digital forensics |
Year | 2016 |
Publisher | IEEE Computer Society |
Digital Object Identifier (DOI) | https://doi.org/10.1109/REW.2016.034 |
Web address (URL) | http://hdl.handle.net/10545/620627 |
hdl:10545/620627 | |
ISBN | 9781509036943 |
File | File Access Level Open |
File | File Access Level Open |
Publication dates | 12 Sep 2016 |
Publication process dates | |
Deposited | 17 Oct 2016, 15:49 |
License | © 2016 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works. |
Contributors | University of Derby and The Open University |
https://repository.derby.ac.uk/item/94576/forensically-sound-analysis-of-security-risks-of-using-local-password-managers
Download files
File
(pre-print) Gray, Franqueira & Yu (2016).pdf | ||
File access level: Open |
license.txt | ||
File access level: Open |
61
total views50
total downloads1
views this month0
downloads this month