Mitro
Type | Password manager |
---|---|
License | GNU GPLv3 |
Website |
www |
Mitro was a password manager for individuals and teams that securely saves users' logins, and allows users to log in and share access.
Mitro Labs announced that the Mitro service shut down on October 6, 2015.[1]
History
Mitro was founded in 2012 by Vijay Pandurangan, Evan Jones, and Adam Hilss.
On July 31, 2014 the Mitro team announced that they will join Twitter, and at the same time, they release the source code for Mitro on GitHub as free software under GPL.[2][3]
The Mitro team have announced that they will be shutting down the Mitro service with the following timeline:[1]
- July 11, 2015: Initial announcement that Mitro will be shutdown
- July 18, 2015: Creating new accounts will be disabled
- August 4, 2015: Final email warning about imminent shutdown will be sent
- September 24, 2015: Mitro will become read-only
- October 6, 2015: Mitro will be turned off
- October 31, 2015: All Mitro user data will be permanently destroyed
The Mitro team explained the reason for shutting down the service was that the cost and administrative burden to maintain the service in their spare time with their own money had become too much. Given that they could not properly manage a service that people rely on for their security, they needed to stop running it.[1]
Former customers are encouraged to move to Passopolis, and independent project that uses the Mitro code. Approximately ten months ago on October 5, Mitro was officially terminated by Twitter.[4][5][6] Mitro has informed users that they can use another company to secure their passwords, known as Passopolis, which uses the same familiar blueprint as Mitro.
Investors
Seed Funding
Mitro is backed by $1.2 million in seed funding from Google Ventures and Matrix Partners.[7]
Features
- Password generator
- Password sharing
- One-click login
- Two factor authentication
- Cross-platform and cross-browser compatibility
- Browser extensions: Chrome, Firefox, Safari
- Mobile solutions for Android and iOS
Security
Mitro uses Google's Keyczar on the server and Keyczar JS implementation on the browser.[8]
- Master key is a 128-bit AES key derived using PBKDF2 (SHA-1; 50000 iterations; 16 salt bytes)
- RSA with 2048-bit keys using OAEP-SHA1 (separate signing and encryption keys)
- AES with 128-bit keys in CBC mode with PKCS5 padding
- All encrypted data includes a MAC (HMAC-SHA1)
References
- 1 2 3 "Mitro is Shutting Down October 6th, 2015". Mitro Labs. November 3, 2015.
- ↑ "Mitro is joining Twitter and is now open source". Mitro Labs. Jul 31, 2014.
- ↑ Eckersley, Peter (Jul 31, 2014). "Mitro Releases a New Free & Open Source Password Manager". Electronic Frontier Foundation.
- ↑ Novet, Jordan. "Twitter will shut down password manager Mitro on Aug. 31 after buying it last year". Venture Beat.
- ↑ "FAQ". Passopolis.
- ↑ "Mitro is shutting down October 6, 2015". Mitro.
- ↑ Cutler, Kim-Mai (Sep 5, 2013). "Get Your Friends, Co-Workers Out Of "Password Remembering Hell" With Matrix-Backed Mitro". TechCrunch.
- ↑ "Why Mitro Is Secure: Security FAQs for Experts".