The best personal password manager
Why I need password manager?
Passwords and problems
Recommendations for passwords
Internet Explorer autofilling
Security of your computer
Benefits from Tray Safe
Using Tray Safe
Tray Safe FAQ
Operations overview
Account fields
Accounts management
Inserting strings from tray
Insertion passwords automatically
Hardware password
Constant password
Password reminder
Encryption and decryption password files
Password files backup
Locking application
Password generator
Search in password files
Custom images
Export password data
Import password data
Print password list
Setup Tray Safe on removable device
Account template editor
Tray Safe password files structure
Tray Safe options
Options
General settings
Interface settings
Password file settings
Backup settings
Automation settings
Account default settings
Language
Server settings
Hotkeys
Quick options
Information
License
Tray Safe history
How to get support?
How to register Tray Safe?
Other products from F-Group Software
Uninstall form
Tray Safe client survey
Tray Safe server survey
About Tray Safe password manager
Tray Safe manager home page
Tray Safe provides you with a large selection of crypto algorithms: 19 cipher algorithms and 10 hash algorithms implemented from Tray Safe 4.0.
You can use any of provided algorithms due to your internal politics or external regulations.

Tray Safe saves all accounts' information into defined structure and encrypts it into file before saving.
Before decryption Tray Safe prompts user to provide password and hardware password and uses given information to decrypt data read from file. After that Tray Safe recognizes the structure to recover accounts' information from decrypted memory. If all is ok and password provided by user in this session is right, Tray Safe recovers accounts' information and displays for use, edition and modification.
If password provided by user is wrong (or hardware hash differs from used for encryption), after decryption Tray Safe gets garbage in memory. Due to used cipher algorithms all memory will be messed up even if 1 bit is wrong. Tray Safe tries to recognize defined structure of password file, but cannot find labels to recover account information.

Note: There is no backdoors to check whether the password is right or not.

After decryption Tray Safe checks if any accounts are in the decrypted password file. If no accounts found, it seems to be like password provided by user was wrong and Tray Safe informs about it with suggestion to enter a new password.

Note: The only way to get a hint to remember the right password is using password reminded message.

Note: Tray Safe offers user to use hardware hash and adds it into password for encryption&decryption. Hardware hash is a suitable feature but it decreases the level of security and can cause a situation, when you have to change your hardware configuration or computer - you will not be able to recover accounts' information. Beware this situation and use backup with ordinary password. Hardware hash depends on computer hardware and current user name. More about hardware passwords you can read here.

Note: Tray Safe provides users with suitable feature - it can save password into password file, protect it with master password and decrypt file automatically without prompting user each time to enter password. This feature is called constant password and you can read more about it here.
But it is a really insecure feature if you don't protect your computer. But you can use hardware hash - in password file it is possible to save only that information which hardware hash uses (1 bit), but it generates on decryption process based on current hardware configuration. In this case all is ok and this file can be decrypted only on your computer - secure level is satisfactory.

Applied algorithms can be chosen from given list at login&password screen on saving operation.


Tray Safe uses open source library DCPcrypt Cryptographic Component Library to encrypt and decrypt password files - you can check the sources of encryption/decryption units to take a proof about strong level of protection.

More about DCPcrypt Cryptographic Component Library you can find at http://www.cityinthesky.co.uk/


Ciphers
Name Block Size Max Key Size*
Blowfish 64 bits 448 bits
Cast-128 64 bits 128 bits
Cast-256 128 bits 256 bits
DES 64 bits** 64 bits
3DES 64 bits 192 bits
Ice 64 bits 64 bits
Thin Ice 64 bits 64 bits
Ice 2 64 bits 128 bits
IDEA 64 bits 128 bits
MARS 128 bits 1248 bits
Misty1 64 bits 128 bits
RC2 64 bits 1024 bits
RC4 N/A 2048 bits
RC5 64 bits 2048 bits
RC6 128 bits 2048 bits
Rijndael (AES) 128 bits 256 bits
Serpent 128 bits 256 bits
TEA 64 bits 128 bits
Twofish 128 bits 256 bits

* although the quoted maximum key size may be extremely large, it doesn't mean that the algorithm is secure to the same level.
** a 64bit key is used for DES then every 8th bit is discarded (parity), so the effective size is 56 bits.

Hash Algorithms
Name Digest Size
Haval 128, 160, 192, 224, 256 bits*
MD4 128 bits
MD5 128 bits
RipeMD-128 128 bits
RipeMD-160 160 bits
SHA-1 160 bits
SHA-256 256 bits
SHA-384 384 bits
SHA-512 512 bits
Tiger 192 bits

Note: This information is provided from DCPcrypt Cryptographic Component Library docs and can be found at http://www.cityinthesky.co.uk/

To get any information about this and other products of F-Group visit us at www.fgroupsoft.com