Asking for a friend. Not your NSA agent. Which is what your NSA agent would say…
By keyfiles I mean the extra files encryption software generates to strengthen passwords.
Hard copy. Printed. And in a safe and secure place in a water and fire resistant bag if possible.
I understand that method is perfect for passwords. But keyfiles are digital for a reason, otherwise I’d just write down my password.
I just store them on a dedicated thumb drive and conect it only when needed, for my keepass vault it functions kinda like a poor man’s Yubikey.
1 Like
The purpose of a keyfile is to make sure the device is trusted, that’s all.
I memorized 2 passwords. SHORT and LONG…
SHORT password is for password managers, frequent use.
LONG password is for disk encryption, infrequent use.
Keyfile is stored unencrypted on disk, but when it’s backed up online, it requires LONG password.
My SHORT password is over 20 characters long btw.
1 Like
Pretty sure the purpose of the keyfile is to make an even longer unguessable password.
You could remember a short password, but with a key file that only you know the location of it becomes a max length password instantly.
Files can be encrypted and attached to entries in KeePass.
2 Likes