價格:免費
更新日期:2015-08-13
檔案大小:50k
目前版本:1.0.1
版本需求:Android 4.2 以上版本
官方網站:https://github.com/TheSheeps/PPG
Email:thesheepsteam@gmail.com
*************************************************
This is a fully open-source application. You can download, review the source code and compile it yourself. Github page: https://github.com/TheSheeps/PPG/
*************************************************
PPG is a super safe application that enables the secure offline password generation for public communication channels. It generates a unique password based on a keyword and a Secret Key.
How to setup?
1. Download PPG
2. Initial login password is: 0000
3. Enter a complicated and long Secret Key in settings section
4. Enter this Secret Key on your friend's mobile using an offline method: in a bar would be our suggestion!
5. Change default application pin and choose a secure one
6. That's all.
Use-case A:
Alice's Company wants to send their source codes to Bob's Company on daily basis. They will RAR it using a password. Also, Alice's Company wants to create a new Twitter account and send its password to Bob's Company. So, how to send its password safely? Answer: Using PPG!
Alice will enter a keyword in PPG like "source" and PPG will generate the corresponding password. So, Alice will encrypt the RAR file using the generated password. Now she will send this message to Bob:
"Hi Bob,
The RAR file is attached, find the unRAR password by using "source" as the keyword in PPG. However, the PPG keyword is "twitter" for the new Twitter account."
Use-case B:
Alice and Bob are friends. Alice wants to transfer Gmail account password, including some personal pictures to Bob. Alice will compress password.txt and honey.jpg in a password protected RAR file.
Now, what should be the password of this RAR, and how to tell the password to Bob through public chats? Answer: Using PPG!
Alice will enter a keyword in PPG like "pics" and PPG will generate the corresponding password. So, Alice will encrypt the RAR file using the generated password. Now she will send this message to Bob:
"Hi Bob,
The RAR file is attached, the PPG keyword is "pics" to get unRAR password."
Use-case C:
Alice has different online accounts. She wants different and unique passwords for each of them, without carrying a dictionary.
She would install PPG and choose a secure PPG Secret Key. So, she can simply enter a keyword in PPG to get its corresponding password. So, when she enters "gmail" for example, PPG will always return "1@av93Fv93JD", and another password when she enter "yahoomail". That's all.
What both parties need to do to have a super-secure and confidential PPG?
PPG generates a unique password using the entered keyword, based on a secret string entered as a Secret Key. So, both (or more) parties need to set an identical Secret Key. The secret string can be super long, so it would be practically unbreakable. It is stored offline in the mobile device, utilizing a complicated cryptography algorithms and methods.
The security depends on a simple rule: The Secret Key should remain secret between parties. So, you need to exchange it offline. Alice and Bob can agree and enter a Secret Key when they are talking to each other in a room, and enter it in their PPG settings. This is the best method ever!
How secure is it?
As mentioned before, the PPG Secret Key is everything. If it is exchanged and set in a secure way, then, all generated passwords through PPG are highly secured. Since the Secret Key is encrypted and stored offline, then it is almost impossible to attack it remotely.
