Feature Description
- use KDF function to derive key from master password
- use derived key to encrypt user's credentials (should consider how to re-encrypt credentials when first launch after installed app for both who set and no-set master password)
- storage password hash instead of master password.
- verify password by hash when updating master password
Why This Feature is Useful
direct use master password to encrypt data is a bad design, but, actually, due to master password never leave user's device, so this feature is better to support but is not must.
Alternatives
users can use a strong master password to make sure credential safe if credential leak but master password not.
Additional Information
Any other information you think might help in understanding the request. And if you know how to implement, can give me some hints.
Feature Description
Why This Feature is Useful
direct use master password to encrypt data is a bad design, but, actually, due to master password never leave user's device, so this feature is better to support but is not must.
Alternatives
users can use a strong master password to make sure credential safe if credential leak but master password not.
Additional Information
Any other information you think might help in understanding the request. And if you know how to implement, can give me some hints.