CYaPass Does Not Store Your Password
Here's the thing that may seem odd. CYaPass does not store your password anywhere.
It generates your password every time.
It Doesn't Quite Look Right
When you see a really new thing, it doesn't quite look right. I mean somebody probably would've already thought of this thing, right?
That's one of the reasons I'm so excited about CYa Pass, because it forces a paradigm shift of sorts. Previously, everyone thought that you had to store the password in a file and keep it encrypted for the user. Now, CYaPass changes that.
It does something so different that it shifts your thinking about passwords.
It's something like what Peter Thiel says in the preface of his current best-selling non-fiction book, Zero To One:
The act of creation is singular, as is the moment of creation, and the result is something fresh and strange.
How Can CYaPass Generate the Same Password Every Time?
It generates your password based upon two things:
- your site/key
- the pattern you draw.
As long as you have the same value for your site/key and you draw the same pattern it doesn't matter if you're running the Android version or the Windows version, it will generate the same hash value password for you.
Here's the Android version running next to the Windows version. You can see that when they both have the same site/key and pattern then the password hash is exactly the same. It's not stored anywhere. It's generated from those two data elements.
Alter The Site/Key Alters the Password
If you alter the site/key at all the generated password is altered, because it is generated off of new data.
In the next image you can see that I change the site/key from supersite to supersite1. Even one character change alters the resulting password in a large way.
Changing the Drawn Pattern, Alters the Password
Of course if you change, just the pattern at all as I do in the next image you will see that even if the site/key has not changed, then the password is altered drastically also. Notice that I both the Windows and Android apps are using the same site/key but I altered the pattern only on the Windows app, which alters that password.
Now The Passwords Match Again
Finally, I change the pattern on the Android app and that makes the passwords match again -- though they are, of course, different from the original ones since the pattern changed.
You can clearly see that these passwords are generated though they are not stored anywhere.
That's why you can generate the same values on two different systems even though they have no knowledge of each other.
Sign In From Any Device
That means as long as you know your site/keys and pattern you can re-generate your password on separate platforms so you can sign in from any device where you have the C'YaPass app.