#system #difference #specification

nanopass

Core crate for nanopass; a secure, procedural, password system

9 releases

0.1.8 Mar 10, 2023
0.1.7 Mar 10, 2023

#1274 in Cryptography

26 downloads per month

MPL-2.0 license

8KB
123 lines

nanopass

A quasi-deterministic password management algorithm in ~300LoC


Differences

Nanopass has a few key advantages over other determinstic password managers.

  • Flexible password parameters - nanopass can generate passwords with specified lengths and various special character restrictions.

  • Mutable master passwords - master passwords can be changed while keeping the same generated passwords, yielding a new vault.

  • Password versioning - a single generated password can be updated without a new master password or changing other generated passwords.

Determinstic password generation also has a few differences from a typical manager.

  • Trust - nanopass never stores your passwords, encrypted or otherwise.

  • Portability - passwords can be generated completely offline, with only a small optional configuration file required.


Config spec

Configuration can be imported a json file with the following format:

[
    {
        "name": "<name>",
        "length": <length>, // password length up to 42
        "version": <version>,
        "special": "<chars>" // excluded special characters
    }                
]

Dependencies

~3.5–4.5MB
~100K SLoC