Keychain2Go - Password Manager and Keychain Sync for Mac and iOS
Keep your data secure, in sync and accessible everywhere.
Keychain2Go
Keychain2Go is a Password Manager for iOS and keychain sync between Macs and Macs and iOS Devices. Finally you can access, sync and change your Keychain on multiple devices (Macs and iOS).
On the Mac
Keychain2Go on the Mac syncs the keychains from different Macs and iOS Devices.
Every application on the Mac stores its secure keys in the keychain. Safari uses it to store the different passwords for the websites, Finder, Disk images, Mail accounts, all is kept secure in the Keychain on the Mac.
Keychain2Go Mac makes that data on a single computer available for sync on multiple computers/ios devices. The Mac version synchronizes data between the multiple Keychain2go instances. You keep accessing your data through programs that use the normal system keychain.
OS X requirement: Mac OS X 10.9,10.10
Apple changed the keychain interface in macOS Sierra. Apple is not opening the documentation on that new interface and I have no idea how and if I can reverse engineer it to find a way working around it.
On iOS
For the first time ever, you can now access your Macs keychain on your iOS Device. You get full access to your keys stored in Keychain2Go. Never again you fail to login to your web mail account when abroad and you forgot your password on the Mac at home.
Minimum requirement: iOS 9 - iOS 10.
Demo movie
This demo shows how to setup a Mac and an iPhone. Entering a new note on iOS, changing the synced note on the Mac which is then synced back to the iPhone.
Encryption
To keep your data secure Keychain2Go encrypts the data in the following way:
The user enters a master passphrase, which is taken and PBKDF2 hashed with a generated random salt. That hash plus a random initialization vector is taken to encrypt the master database password via AES.
Every Item is encrypted in the way, that the master database password is hashed with a new random salt and used as key. The item itself is then encrypted via AES with that hash and a new random initialization vector. Decryption uses the reverse process.
The passwords for accessing the database (when in automatic sync) are stored/taken from the inbuilt keychain function Apple provides.
For sync communication the data is encrypted via AES and the keys are transmitted via RSA public key encryption. On the first connection a SHA1 hash is created from the two Public Keys used and shown to user (only a few bytes from the hash actually) to prevent man in the middle attacks.
Made with