Selecting encryption method
The task of cryptography is to protect information from unauthorized access and distribution. The main purpose of the cipher is to transfer encrypted messages via unprotected channels.
Keys are required for encryption and decryption. A key is a vital component of a cipher. If one and the same key is used for encryption and decryption, it is called a symmetric key. If two keys are used , it is asymmetric. Symmetric ciphers can be either block or stream. Any information (regardless of the format of the source data) is interpreted in binary code. A block cipher assumes all data will be broken into blocks, each of which will then undergo an independent transformation. In a stream cipher, the algorithm is applied to each bit of information.
Kaspersky Password Manager offers the following symmetric encryption algorithms:
- DES. Block cipher with the standard-sized key of 56 bit. By today’s standards, DES does not offer a high level of protection. This algorithm is used when reliability is not the main requirement.
- 3DES. A block algorithm created based on DES. It solves the main weakness of its predecessor – the small key size. 3DES keys are three times the size of those used by DES (56*3=168 bits). The speed of operation is three times slower than for DES, but the level of security is much higher. 3DES is used more often, since DES is not resilient enough against modern cracking techniques.
- 3DES TWO KEY. A block algorithm created based on DES. This is a 3DES algorithm which uses a key size of 112 bits (56*2).
- RC2. A block-cipher algorithm with variable-length key quickly processes a large amount of information. It is a faster algorithm than DES. In terms of security and resilience, it is comparable to 3DES.
- RC4. A stream cipher with variable-length key. The key size can range from 40 to 256 bits. The advantages of the algorithm are its high speed and variable key size. By default, Kaspersky Password Manager uses RC4 for data encryption.
- AES. A block-cipher symmetric algorithm with a key length of 128, 192, 256 bits. This algorithm guarantees a high level of security and is one of the most commonly used.
Microsoft Windows uses an encryption provider to perform cryptographic operations. Each encryption provider supports several encryption algorithms with a specified key length. Kaspersky Password Manager uses the following built-in Microsoft Windows encryption providers:
- Microsoft Base Cryptographic Provider;
- Microsoft Enhanced Cryptographic Provider;
- Microsoft Enhanced RSA and AES Cryptographic Provider (Prototype);
- Microsoft RSA/Schannel Cryptographic Provider;
- Microsoft Strong Cryptographic Provider.
To change the encryption algorithm, please do the following:
- Open the main application window.
- In the bottom part of the window, click the Kaspersky Password Manager button.
- In the window that opens, click the Settings button.
- In the left part of the window, select the My passwords section.
- In the right part of the window, under Encryption, click Change.
- In the window that opens, specify the encryption settings.