Mooltipass Mini Password Keeper
Our online lives are always expanding and along with new territory come new usernames and passwords... leading us to experience security fatigue. The Mooltipass Mini is designed to help you keep all of your passwords secure, while still leaving them easy for you to access no matter where you need them. Whether you're looking to improve your existing password management methods, or just starting to explore how to manage them all, the Mini has something for you!
The Mini connects to any USB-capable device (phone, tablet, computer, etc). To use it, all you need to do is insert your personal smartcard, unlock it with your PIN, and start using your device. You'll be able to log in anywhere with a quick tap on the desk or a few tweaks of the scroll wheel!Get your Mooltipass now.
Here's a quick overview of its features:
- One Mini can be shared by multiple users, identified by their personal cards
- One smartcard works on multiple Mooltipass Minis: have a backup Mini!
- The Mooltipass Mini isn't vulnerable to standard password manager attacks
- Mooltipass Mini cards can safely be cloned without compromising security
- User credentials can safely be exported: backups are encrypted!
- Your credentials are safely encrypted inside the Mooltipass Mini
- Only remember one card PIN to access all your credentials
- Tamper evident case made of Anodized Aluminum
- Secure firmware updates
Why Do I Need a Mooltipass Mini?
Excellent question! If you browse the Internet regularly, you have no doubt amassed a healthy assortment of accounts for various sites and services you use daily, monthly, or even once in a blue moon.
Do you have no problem remembering all of your unique and different passwords for those services without using something to help you remember them, not to mention each site's differing password requirements? OK, then maybe the Mini isn't something you need... but wouldn't it be awesome if there was a device that could remember all of your passwords for you? The Mini can help with that!
Do You Use Something Else to Store Your Passwords?
Many people use software tools to store and organize their passwords. That's a great first step, but consider what happens if a piece of particularly nasty malware compromises your computer. It can steal your password database, and the next time you use it to log in to a website, it can also steal your master password. We're not kidding, in fact, something similar happened to a well-known password vault. Since we decouple the decryption key from your computer, it becomes much harder for a malicious program to make off with all of your account information.
Do You Use the Same Password (or a Set of Similar Passwords) in Multiple Places?
Well, you've certainly solved the problem of remembering your passwords... but have you considered what happens if one of those services is compromised and your password is stolen? An attacker now knows the email address you used to register for the service - and if it has the same password, chances are he can now access a lot of information about you... for example:
- E-bill reminders
- Bank information
- Accounts for online merchants
- And all the other services you use...
Hopefully you haven't used the same password for any of those services... but don't forget many services will email you a password reset link. With all of this information at their fingertips, a malicious person can easily take control of your online life!
OK, So You Used a Different Password for Your Email Address... But What About the Password Reset Questions?
Many people's accounts are compromised because they did nothing more than choose security questions to which the answers are easily guessed or can be found elsewhere online. Your high school, or mother's maiden name? Perhaps those can be found on your Facebook account or LinkedIn profile... You can even have the Mini remember some obscure answers to security questions for you!
As You Can See, the Strength of Your Security is Only as Strong as the Weakest Part.
As cliché as the information is, the only way to ensure your accounts stay secure are to use unique and complex passwords for each one - and thus we come full circle to the first paragraph of this section. That's why we created the Mooltipass and Mooltipass Mini - to make it easy to start (or continue) good security practices for all of your online accounts. It can even help you out by generating long, complex, random passwords anytime you create a new account somewhere or wish to change an existing password.
How Easy is it to Use?
Not hard at all - we created cross platform browser plugins to add all kinds of features, like automatic detection of login forms, adding/creating/updating credentials, and even adding them to a favorites list on the device for quick access. Just plug it in, unlock it with your smartcard, and start using your computer. You can even knock on the table to approve credentials requests !
Our Chrome extension and App have been used for nearly 2 years now, and we are currently testing our newly developed extension for Firefox.
You can also use the Mooltipass Mini on any computer, tablet, smartphone, or any other device that can support a USB keyboard. Then you can just unlock your Mini and select which credentials you'd like to send to the device - no drivers required, and it doesn't matter whether it's Windows, Mac OS, Linux, Android, etc...
We've had extensive discussions on the user interface with our beta testers, and the end result is something everyone has found easy to use.
The Mooltipass mini has the same security as its larger brother - namely:
- A Smartcard to securely store the AES-256 encryption key for your protected information. This disconnects the encryption key from your secured data, meaning that even if your computer is compromised, the encryption key cannot be accessed by any malicious software on the machine.
- PIN-based Authentication - 4 wrong PIN entries and the card will self-destruct, putting a significant damper on the viability of brute-force attacks. Don't worry, it's easy to securely duplicate your access card, on the off chance something happens to the original!
- Tamper Detection - To ensure you know nobody has tinkered with your Mooltipass Mini, the aluminium cases are sealed with high-strength adhesive. One of our beta testers tried to open a Mini without causing damage... suffice it to say it was pretty obvious someone had attempted to tamper with the device by the time they managed to access the (quite charred) circuit board.
- Fully Encrypted Backups - You can rest assured knowing that the backup files are encrypted using the same key stored on your smartcard. Even if someone compromises your computer (or cloud storage account) and obtains the exported data, they will not be able to decrypt your passwords.
- Secure Firmware Updates - The Mooltipass Mini includes a way to safely update the firmware running on it using digital signatures. This will allow us to add new features to your device in the future!
The Mooltipass Mini was designed with our users in mind. Many of them commented that the larger version wasn't quite as portable as we'd originally thought. Based on their feedback, we shrank it down to only 79 x 37 x 12 mm. We also halved the size of the smartcards in order to keep the unit small and unobtrusive when in use.
As economical as plastic enclosures can be, our team felt they just weren't right for the Mini. After some experimentation and a test batch of aluminium enclosures, all of our beta testers fell in love with the metal design. Not only does it look awesome, but it's also far more scratch-resistant than a plastic enclosure - and that's a pretty big plus for something you would carry around a lot.
To maximize portability and utility, there are a few additional features we'd like to share:
Touch interfaces tend to need a lot of space to work well. Instead, the mini sports a compact, clickable scroll wheel as its main navigation mechanism.
Since the Mini fits so easily in one hand, it can be configured to work with the scroll wheel either on the right, or on the left, whichever you find most comfortable.
Don't want to hold it in your hand? No problem, you can use it hands-free! If it is unlocked and you visit a website with stored credentials, you can simply tap on your desk to confirm that you wish to log in.
- Device Size: 79 x 37 x 12mm
- Working Voltage: 4.75V to 5.25V
- Current Consumption: 0.5A maximum
- Connector: micro-USB 2.0 (full speed)
- Internal Memory: 4Mb
- Smart Card Support: AT88SC102
- True Random Number Generation
- Interface Type: clickable scroll wheel
- Case Material: Brushed Anodized Aluminum
- Display: 128x32 pixels monochrome 2.23" blue OLED screen