Dropbox + KeePass = Secure, Convenient, Cross-Platform Password Management System

Red Door, Lock

There is a growing trend towards storing data and other information on the cloud. I use Evernote to store important notes and information online, and access them on the go with my Android phone. I use a web-based task management application, Remember the Milk to keep track of my things-to-do from work and home. I use Google Calendar to track my appointments and other events from my mobile and from my web browser. I host my blog images and store all my photos on Flickr. I love the cloud.

I use Dropbox to sync files that I access from multiple locations, using their secure web storage. It’s incredibly convenient to take meeting notes on my work laptop, save it on Dropbox, and access those notes later from my desktop work computer. Before Dropbox, I would have emailed those notes to myself. I store my Guild Wars skill templates on Dropbox so I can access them whether I play the game from home or at work.

Like many people, I have to remember dozens of passwords for websites and accounts I access. I have to remember so many passwords that it’s difficult to remember them all and practice good password security practices. A colleague recommended KeePass, an open source password manager, to store passwords securely, using rock-solid encryption. All passwords in your KeePass database are locked via a master password and/or a key file. KeePass also offers a robust password generator. The passwords generated are impossible to remember, so using KeePass becomes important to access those important accounts. Admittedly, this creates a single point of failure. If you forget your master password and/or don’t have your key file, your passwords are inaccessible. However, it’s easier to remember one master password than dozens and dozens of unique passwords for all of those accounts. The KeePass website offers a version of the application that can be installed on a USB flash drive, so your passwords go with you everywhere. However, that’s just one more piece of hardware to keep track of, and I wasn’t keen on carrying it around everywhere.

I became curious about whether it was possible to combine Dropbox with KeePass as a means of portable password management. After a short search, I found a step-by-step article on Lifehacker detailing how to do just that. Using KeePass with Dropbox keeps my passwords accessible from multiple computers, as well as from my phone. Both Dropbox and KeePass have Android apps, so I can input passwords for online accounts I use with my mobile. Dropbox also backs up my KeePass password file online. This password management strategy has worked pretty well for me so far. How do you manage your passwords?