Secure Password Management On The Go!
KeePassMobile is a port of the widely used, free, secure, award winning password manager software KeePass for mobile phones (J2ME platform).
KeePassMobile is free, open source software and can be redistributed and/or modified under the terms of the GNU General Public License version 3 (GPL3).
Yes. KeePassMobile offers everything you need to store your passwords in a secure and portable password database on your mobile.
KeePassMobile only supports KeePass 1.x databases. The J2ME platform, KeePassMobile is built on, is very limited due to the capabilities of mobile phones. For this reason I do not plan to support KeePass 2.x databases that have enhanced resource requirements.
See the differences of both versions here.
If you like KeePassMobile and want to contribute, you can help as translator, beta tester and/or donator. Please contact me!
Select the password field and press ENTER (center cursor button) once, to enter the edit mode of the underlying text field.
If your database is password AND key file encrypted, first enter the password (see above) else leave the password field blank. On the same screen open the menu, choose "Use key file" and navigate to the key file on your mobile. Select the key file with ENTER.
Click UP/DOWN to navigate through the list of groups/entries. Click RIGHT/ENTER to go down the tree of groups. Click LEFT to go up the tree of groups.
Open the menu on the start screen and choose 'Preferences'. Change the settings to your needs. Now, open the menu and press 'Save'. Restart KeePassMobile to activate the changes.
Open the password entry with the attachment. Open the menu, choose "Save attachment" and navigate to the folder on your mobile where you want to save the attachment into. Select the folder with ENTER.
This problem occures, if the database or path name consists of one or more special characters (for example russian, asian,... characters). Try to use only English Alphabet characters for the database and path name. After that, the error should disapear.
KeePassMobile has greater hardware requirements than other Java mobile apps. Those are the costs of having a nice UI. But even on my four year old Nokia S40 device KeePassMobile works like a charm. If you have problems getting the standard package of KeePassMobile to run on your mobile, try the LIGHT version of KeePassMobile. KeePassMobile LIGHT was specially created for old/low-end mobiles and can be downloaded here.
Even small databases can take long to decrypt on some phones. This is because the master password itself is encrypted very often before it is used to decrypt the database. This is a security feature of the KeePass database and protects against dictionary and guessing attacks (see here for more information).
KeePass for PC sets the number of key encryption rounds to 6000 by default. For a PC this is OK, but for a phone with its limited capacities this can be too much. Lower this number to 150-300 will not reduce the security very much, but will speed up the decryption process a lot. To do this, open your database with KeePassMobile and choose "Edit database settings" from the menu. Change the number of key encryption rounds in the settings dialog and save the database afterwards. The next time, loading your database should be much faster.
Starting with V0.6, KeePassMobile prints out some performance statistics about your mobile regarding the decryption process. At the end of the report KeePassMobile prints out a "performance rating" value. All the different disciplines of the decryption process are computed into this value. It is not intended to provide 100% fair performance benchmarking, but can be used to make a rough estimate of the performance of your mobile.
For comparison: A mobile that can process 1000bytecodes/ms: performance rating = 100
Please leave a note in the forums about the performance of your mobile.
KeePassMobile needs access rights to read/write data from/to phone memory, sd card,... How this access rights can be achieved differs from mobile to mobile: Some mobiles pop up a dialog asking the user for permission every time, others simply stop executing KeePassMobile with a "java.lang.SecurityException".
The key problem is, that KeePassMobile is not signed and therefore the phone handles it as untrusted application. There are two solutions for this, that have both significant drawbacks:
There are two interesting articles about this dilemma:
http://javablog.co.uk/2007/08/09/how-midlet-signing-is-killing-j2me/
http://blog.javia.org/midlet-signing/
If someone sees another solution, please post in the forums!
Yes. At the moment (V0.8) KeePassMobile is a bit slow and do not comply with BlackBerry standards: because BlackBerry phones lack of soft-menu buttons you have to use the Q key for the left menu and the P key for the right menu. Anything else works as expected (including trackball to navigate through the password groups/entries tree). I will try to make KeePassMobile V0.9 fully BlackBerry compatible.