What is keycan

Keycan is an free online encrypted vault for usernames and passwords. It’s meant to replace that passwords.txt file on your desktop, or that hidden post-it, and make it available online from everywhere. The really good thing about Keycan is that all the encryption and decryption is made locally on your computer. No sensitive information, unencrypted data or encryption keys are sent unencrypted over the internet.

How is the vault data encrypted

Keycan uses two types of encryption algorithms MD5 and AES. With the MD5 algorithm The usernames and passwords are hashed, before they are sent to the Keycan server. MD5 is a one way algorithm, which means that if your username is “user123″ and your password and encryption key is “qwerty567″; all we see is 6ad14ba9986e3615423dfca256d04e3f and f7a5eba6d59a00a4694a4db8e71bdef2. And there is no way to go from the encrypted value to the original value. The vault data on the other hand is encrypted using a two way algoritm, 256-bit AES, with your raw password as an encryption and decryption key.

How does Keycan work

The login and encryption procedure goes as follows. You enter your username and password; i.e. “user123″ and “qwerty567″. Both values are hashed, the username to 6ad14ba9986e3615423dfca256d04e3f and and the password to f7a5eba6d59a00a4694a4db8e71bdef2 and sent to our server. The vault data matching those values is sent back to the client, your browser, which tries to decrypt it using your raw password – “qwerty567″. This means that your encryption key “qwerty567″ never leaves your computer and only encrypted data is sent over the internet.