Unlock database by feeding a keyfile

[serrq]

I already use this method with KeePassDX. Just open the app, select the right keyfile, press "open" and I am inside. No keylogger, no clipboard involved.

[keshav-space]

Just open the app, select the right keyfile, press "open" and I am inside.

and from where will you pick the key file?

[serrq]

and from where will you pick the key file?

Basically a key file is a password contained in a .txt file. Remove the .txt part and you obtain the bin file (a file without any extension) with password inside.

Of course the password is that of your vault.

Of course, I’m asking the developer to write the code to read the contents of a key file and use it to unlock the vault.

[keshav-space]

Basically a key file is a password contained in a .txt file. Remove the .txt part and you obtain the bin file (a file without any extension) with password inside.

Of course the password is that of your vault.

Of course, I’m asking the developer to write the code to read the contents of a key file and use it to unlock the vault.

I was not asking about the content or file type of the key.

What I want to know is whether you will pick the key file from the Android file system. If your answer to the above question is yes, then what is stopping a malicious app on your device from stealing the security key and eventually compromising your notes?

[serrq]

What I want to know is whether you will pick the key file from the Android file system. If your answer to the above question is yes, then what is stopping a malicious app on your device from stealing the security key and eventually compromising your notes?

Of course I can’t rule out the case you mention, but it’s always better of typing a password on the keyboard or pasting it from the clipboard.

However, I created a private volume with the Anemo app (you can find it on F-droid).