Why TripleDES, though?
To be honest Fodder, I had just learned how to implement that particular encryption, in a Programming School assignment, and was I suppose eager to put it to use. I think that in a future update of the software I may provide the option to select from among several encryption algorithms.
OK, I was just wondering since DES is both slower and less secure than contemporary algorithms, and shouldn't really be used for anything than supporting legacy systems
(yes, it's slower even though it's less secure - it was designed with hardware implementation in mind, and uses operations that are slow on our general-purpose x86 processors).
Decrypting a KPT file with an incorrect password still produces a "password-accepted" message box and a resulting file (though it's unusable).If it gave a messagebox that the password is not accepted, that could be a means to hack your way into the vault...
Not really, no - unless very poorly designed, you'd still be no better off than brute-forcing the entire keyspace
. Yeah, it does mean you'd have to store a hash of the decrypted file contents, but in practice this isn't really a security concern.