2

Is it feasible to have data encrypted at different levels of hierarchy

I'd like to encrypt an xml database (such as used in www.keepass.info) whereby two or more keys can exist. For example:

  1. Key #1 decrypts the entire database file
  2. Key #2 decrypts a subset of the database file

Is this technically possible/recommended? The reason I'm looking is that I currently use keepass for myself and I repeatedly get family members saying that they've forgotten their password and do I know what it is...so I would like them all stored in a master database file that we can keep on our home network storage

Bendy
  • 123
  • 5

1 Answers1

0

Yes, this is possible. You can create a symmetric key per entry. You can then wrap that key with any key (of any person) you want and store the wrapped keys with each entry.

I strongly suspect that doing so within keypass is not possible.

Maarten Bodewes
  • 96,351
  • 14
  • 169
  • 323