Wednesday, July 14, 2010

Presenting Aegis Shield

  If you're a regular reader of this blog, you may remember me mentioning my password manager application for Android, Aegis Shield. The thing is, that in March, I have finished version 1.0 of the application, and I wanted to publish it in the Android Market, but since there are some rules regarding applications that use encryption to which you must agree when publishing to Google's Android apps store and I was unsure if Aegis Shield respects them, I decided not to publish it for the time being. By the way, if you know the US export laws regarding software that uses encryption, I would really appreciate some insights on that. I am especially interested to see if Aegis Shield can be exported as software without any special permissions from the US Government.
   This being said, I would like to add a description of what Aegis Shield does together with some screen shots and with a QR encoded URL from where you can download it and try it on your phone.
   As I mentioned, Aegis Shield is a password manager which basically allows you to keep the user/password combination for your various Internet and computer accounts, all in one place and encrypted under a master password.
   Main features of the applications are:
  • Having a master password that is not saved on the device. The way this works is by saving an encrypted version of a check text when first entering the master password, and then each time when you log in the text gets decrypted and it is compared with the clear text. If they are the same, you are allowed to log in the application. For now, there is no way to change or reset the master password, so please make sure you remember it well, because otherwise you won't be able to use the application.
  • It allows you to enter information about your accounts and offers the possibility of automatically generating the password.
  • You will see an overview of all your accounts which will allow you to view/edit the account information by means of a long press on the account list item.
  • Your chosen password strength will be measured and shown.
  • Accounts can be edited or deleted.
   Before some screen shots and help information on how to use the application, here is the download URL encoded as a QR code:

   The main/master password entering screen.
   This screen appears only the first time you run the application, and it asks you to enter the master password twice. After that, you will only see a single password entering field each time you use the application.

   The add account information screen.
   Here you will enter your account information such as the account name, an optional description and the user/password combination. You also have the possibility to automatically generate a strong password, using the "Generate Password" button. Once you finish adding the account info, you can click on the "Create Account" button and the info will be stored locally on your device, with the password for the account encrypted, using the master password as a private key. After pressing the "Create Account" button, the fields will be cleared, so you can enter another account. If you finish adding accounts you can go to the account overview screen by pressing the "Account Overview" button.

   The account overview screen.
   In the account overview screen, you can see the whole list of your accounts and when long pressing on an account in the list, you will be presented with the Add/Edit/Delete menu you can see above, that will allow you to do the respective operations. If you want to view or edit the info of an account, just press the Edit button, which will take you to the next screen.

   The edit/view account info screen.
   Here you can view or edit the information for an account. Password is initially hidden, but you can tap and hold the field to reveal it.

   Finally I would like to add some information about the licensing of the application which is GPLv3 and a disclaimer.
   If you decide to download and use the application, you automatically agree to the GPLv3 license terms, of which a short description is provided below:
This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with this program. If not, see
  Feel free to download and use it, but remember that this is free software and it comes with no warranty. However I do believe that there is room for improvements, so feedback is appreciated. You can either email me at[at] or add some comments to this blog post.

Playing for Change