Sleutel 0.7 - New and Noteworthy

Here are some of the more noteworthy things available in version 0.7 which is now available for download. See the build notes for details about bugs fixed and other changes.


General


Security Question Storage For each password entry, you can store security questions and answers that more and more web sites appear to require as part of user validation. Instead of trusting these websites with the name of your first pet, home town, mother's maiden name etc, you can provide random names and use Sleutel to track them:

After providing the question/answers pairs in the password entry edit dialog, they are accessible through the right click menu for the given password entry:

Selectable Encryption Algorithm Users can now select encryption algorithms provided by their Java JRE. Prior to version 0.7, Sleutel always used Sun's PBEWithSHA1AndDESede (password based encryption with SHA1 hash and triple DES encryption) algorithm. Now, for each file, the File Properties dialog (short cut CTRL-Enter) shows all available password based encryption algorithms (prefixed by PBE) provided by the Java JRE. For example, for greater encryption strength, you can add the BouncyCastle Crypto API as an additional JCE provider in your JRE and the provided algorithms will be selectable in the Sleutel password file File Properties dialog. Below is a screen shot of the File Properties dialog when running Sleutel using a Java JRE with Bouncy Castle installed (BC):

Note that, when selecting a provider in the left list, Sleutel will preselect the preferred algorithm for the given provider (highest strength encryption, for SunJCE and BC)). When new files are created, Sleutel will default to Sun's PBEWithSHA1AndDESede algorithm, but can be preset in the preference settings:

Warning: Files stored with Sleutel version 0.7 are not backwards compatible (e.g. previous versions of Sleutel will not be able to read 0.7 stored files). Pre-0.7 password files will be automatically upgraded to the new 0.7 format when loaded for the first time (on save). For the curious under us: the new format stores the encrypted password entries base64 encoded in wrapper XML that has meta data information such as encryption parameters (as each file now can be stored using different algorithms).


Keyboard Shortcuts Most Sleutel functions can now be accessed using the keyboard shortcuts. The shortcuts are listed next to the pull down menu items and can be modified through Sleutel preferences:

A quick overview of the Sleutel keyboard shortcuts can be accessed through the help menu or shortcut Shift+Ctrl+L.


Import/Export For either backup purposes or loading password information from other password managers, you can import annd export password files from and to XML formatted files. Currently, only the native Sleutel XML format is supported. Do note that exporting a password entry file to disk will expose your password information unencrypted on disk so use this feature carefully (e.g. use safe deletion programs that remove all traces of the exported file or only export to a USB key that is closely guarded). Future versions of Sleutel will expand the imports to password manager specific importers.


Splash Progress


The above features are just the ones that are new since the previous release . Summaries for earlier released: