Next: 02 - Preparations
On this page we write an application using the eVaf application development framework. Knowledge of the C++ programming language and Qt application and UI framework are required. The tutorial is written for Linux, but with small modifications the same application can be written on Windows.
We try to be good programmers and start with a short specification for the application before writing any code.
In 2011 the PlayStation Network was hacked and sensitive data including user names and passwords stolen. I as many other normal people used the same password on PSN as well as on many other online services. Once one of them was compromised, all the passwords needed to be changed.
We are most secure when we use unique passwords for each and every web site and online service. So let us write an application that can be used to generate unique passwords. We do it in such a way that whenever we need to re-enter a password, we can re-create it without actually storing the password on our hard disks.
For this we are going to write a password generator using cryptographic hash functions. By feeding the password generator with the same input data, we end up with the same password. All we need to remember is the input data we entered when generating the password.
For the input data, we can combine a name of the online service with a master password that only we know. We do not store the master password, do not send it to any of the web pages nor can it be figured out from the generated password. Only things that we may want to store are optional parameters for the password generator, like the length of the password.
The application is simple and, for example, Firefox already has many add-ons that do exactly what we are going to write. To make it an eVaf application, we are going to split it into modules and define interfaces to work with them. Every module does it's on job and can be easily replaced if we wanted so:
The Generator module really needs to do only one job -- generate passwords in such a way that by feeding it with the same input data, the same password gets generated. Input data for the password generator is:
We also may want to know the maximum length of the generated password. The maximum length depends on the cryptographic hash function used in the module and we need a function in the interface for this.
The Storage module stores non-sensitive data required to re-generate passwords:
We need a function in the interface that can be used to store input data for the generator when a password is generated.
We also need functions to query stored data identified by the Name value. The query function could work with partial matches so that when we enter "fa" into the user interface, it offers "facebook.com" if this record is found.
The User Interface module provides us with a window where we can enter necessary input data and generate passwords. Once the password is generated, we want it to store non-sensitive input data and optionally copy the generated password to the clipboard.
If the Storage module supports this, then the User Interface module could also offer existing names based on the initial input.
In the next section 02 - Preparations we prepare the development environment.