SQLCipher for Windows Universal Application Platform

2015-12-01 07:00:00 -0500

We are happy to announce the immediate availability of our commercial SQLCipher for Windows Universal Application Platform package, available for purchase here. We have previously supported both the Windows Runtime and Windows Phone platforms as separate component packages, however moving to the Windows 10 platform allows for a different approach. We will continue to support the older individual packages with updates to SQLCipher, however for developers looking to strictly target Windows 10 on the desktop, and/or Windows 10 Mobile we now have a unified package option.

Application Integration

The new package is bundled as a Visual Studio extension and local Nuget package. The client library itself uses the SQLite.Net.Core-PCL component providing a lightweight ORM interface. Utilizing a PCL component at the base allows for shared database logic between Windows 10 and Windows 10 Mobile projects, further simplifying the developers ability to target multiple platforms and minimize code duplication.

The component packaging includes precompiled binaries, documentation, and demos to allow for quick integration of new or existing projects wishing to protect their data. A sample below shows how quickly you can construct a secured SQLCipher database connection for your Windows 10, or Windows 10 Mobile application.

var key = "SQLCipher!";
var databaseFile = "test.db";
var databasePath = Path.Combine(ApplicationData.Current.LocalFolder.Path, databaseFile);
var connection = new SQLiteConnection(new SQLitePlatformWinRT(key), databasePath);

Please note, this new package requires usage of Visual Studio 2015. SQLCipher for Windows Universal Application Platform does not work within the Windows Phone 8.0/8.1 platforms, nor does it work on the Windows Runtime operating system; we offer separate packages for these environments. Please feel free to reach out to us if you have any questions.

Importing LastPass Data with STRIP

2015-08-26 23:00:00 -0400

Perhaps it’s because LastPass has been in the news—the company has recently been purchased by LogMeIn—we’ve gotten some inquiries as to how one can import LastPass data in STRIP. It’s pretty easy:

1. Log in to your LastPass Vault

2. Click on Tools > Export

3. Save the file and open it with a text or spreadsheet editor

4. Rename “name” to “Entry” and “grouping” to “Category

Note that Entry and Category are capitalized. Save your changes and close the file.

5. Launch STRIP, login, select File > Import

Select the CSV file you just edited.

That’s it!

What is STRIP?

2015-08-26 23:00:00 -0400

STRIP is a password manager and data vault. But much more than that, STRIP offers a flexible data model, cross platform sync, excellent customer service, and a high standard of data encryption. The history of STRIP began back in 1998 as an app for the Palm OS. Ever since then, STRIP has been advancing with its full database encryption using AES-256, user interface, and additional features which make it stand out. It is important to note that this is a standalone application: no account registration needed. Your data is yours to keep. Even when you sync, your data is fully encrypted and can remain cloudless if you sync over wifi. This video gives an overview of what STRIP is and dives into it’s features.

As always, if there are any questions, concerns, issues, or feedback please let us know.

Passwords 15

2015-07-28 22:16:00 -0400

Passwords conference logo

A hacker conference that’s all about passwords, PIN codes, and digital authentication.

We are excited to announce that we are sponsoring and attending Passwords 15 this August 4th and 5th in Las Vegas! It’s an annual conference held alongside the BSides hacker conference which brings together some of the brightest minds in the field—among them password crackers, researchers, and security experts.

Representing us will be two members of our development team, Micah Moore and Billy Gray. If you’re attending as well, don’t be shy, say hello. This is our third year attending Passwords; last year we sponsored the conference and delivered two talks ourselves. Here’s the one we gave on enhancing password-based key derivation techniques:

This year we’re just going to take it all in. The talks are really engaging, some demonstrate cutting-edge cracking techniques and delve into theory while others try to make sense of all the research out there and address wider issues. BSides is of the same caliber: there’s never a dull moment, and the pool party isn’t bad, either ;) Hope to see you there!

Secret Agent Is Awesome

2015-07-14 21:00:00 -0400

Hello readers. STRIP, our password manager, has a helpful feature named Secret Agent that makes it easy to access data stored in STRIP from other apps. We created a demonstration video on how to use Secret Agent effectively and we wanted to share it with you and describe the feature a bit more.

Ever get to a website login page and sigh at the annoyance of typing in your username and password? You don’t have to with Secret Agent. Just use the global keyboard shortcut to bring up the search bar. Search for your entry and hit enter, then select the field you want and hit enter again. Secret Agent will automatically fill in the field–without the need for an additional browser plugin. This works on more then just browsers: you can insert data from STRIP in any app using Secret Agent.

How to set it up:

  • On Windows go to File/Preferences/ Check off “Run Secret Agent at Windows Login”
  • On OS X go to STRIP/Preferences/General Check off “Enable Secret Agent with keyboard command”
  • NOTE FOR OS X USERS: Make sure user script is at the correct path: ~/Library/Application\ Scripts/net.zetetic.Strip.mac/

How to use it:

At a prompt you can use the hotkeys to bring up the search bar. These are the default keys which we recommend, but you’re free to change it to your liking.

  • Windows: Shift + Control + Backslash
  • OS X: Shift + Command + Backslash

Search for your entry. Hit enter on the field you want to fill. Make sure your insertion cursor (blinking vertical line) is on the field you want to fill before calling Secret Agent. When you call it again it will start from where you last left off incase your filling in multiple fields. Else, you can just start typing and it will search. Once you get the hang of it logging in becomes impressively quick, leaving on-lookers curious as to how you were able to login in so quickly without touching your mouse or typing all that much.

As always, if there are any issues please let us know.