S.S.E. Password Vault - Format Specifications (version 2)

Password Vault Format

*A - Compression: XZ format (LZMA2 compression, hash SHA-256).
*B - Encryption: Chosen algorithm in EAX mode. Tag size - chosen blockcipher block size or 256bit max.
*C - Salt: Chosen blockcipher block size or 256bit max.
*D - Algorithm Codes:
• 0 = AES (256 bit)
• 1 = RC6 (256 bit)
• 2 = Serpent (256 bit) : (Bouncy Castle "Tnepres" implementation)
• 3 = Blowfish (256 bit)
• 4 = Twofish (256 bit)
• 5 = GOST28147 (256 bit)
• 6 = Blowfish (448 bit)
• 7 = Threefish (1024 bit)
• 8 = SHACAL-2 (512bit)
*E - Hash: SHA-256 hash of the "DB Format" section. Used only for import purposes.

Key Derivation Function

A new key/nonce pair is generated by scrypt KDF for every single encryption operation. The pair is derived from Skein-1024 hash of a password using a random salt.

Scrypt Parameters:
N = 2048
r = 8
p = 5


S.S.E. Password Vault - XML File Format

Basic Structure:
<Vault>
   <Folder>
      <Name>Password Folder 1 Title</Name>
      <Comment>Password Folder 1 Comment</Comment>
      <Position>1</Position>
      <IconCode>-256</IconCode>
      <Items>
         <Item>
            <Name>Password Item 1 Title</Name>
            <Password>PASSWORD 1</Password>
            <Comment>Password Item 1 Notes</Comment>
            <Modified>2014-07-14T10:32:32</Modified>
            <IconCode>-256</IconCode>
         </Item>
      </Items>
   </Folder>
</Vault>
	

Notes:
<< Other Specifications