securing a key file by moving it into app-specific storage

[GoogleCodeExporter]

It would be a great feature if KeePassDroid could import a keyfile for a 
database into its internal storage, so that no other application could gain 
access to it.

Initial discussion at 
https://groups.google.com/group/keepassdroid-discuss/browse_thread/thread/83583d
db851702e

"One of my concerns with using KeePassDroid is that even though I use a keyfile 
with my database, I am concerned about a rogue application having possible 
access to both my keyfile and database.  Since the key file is loaded into 
sdcard space on the phone, any application can view it due to the 
permissionless FAT32 nature of the filesystem.

...

I don't mind as much that other applications can access encrypted database 
(which is on the system through Dropbox) as long as it requires two things that 
would be otherwise hard to get: my passphrase and keyfile.  Putting the keyfile 
into internal storage would go a long way into ensuring my data is protected."

Original issue reported on code.google.com by fto...@neverending.org on 8 Jul 2011 at 1:01

[GoogleCodeExporter]

Sorry I couldn't figure out how to change the "type" of issue away from "Defect"

Original comment by fto...@neverending.org on 8 Jul 2011 at 1:02

[GoogleCodeExporter]

Original comment by bpel...@gmail.com on 5 Sep 2011 at 5:58

• Added labels: Type-Enhancement
• Removed labels: Type-Defect