Software Licensing Agreement for mSecure and mBackup

 

MSEVEN SOFTWARE LLC


SOFTWARE LICENSE AGREEMENT


IMPORTANT: YOU SHOULD READ THIS AGREEMENT BEFORE INSTALLING THE SOFTWARE. INSTALLING THIS SOFTWARE AND/OR USING THE PROGRAM INDICATES YOUR ACCEPTANCE OF THE TERMS STATED BELOW. IF YOU DO NOT AGREE TO THESE TERMS AND CONDITIONS, DO NOT USE THIS SOFTWARE. IF YOU DO NOT AGREE TO THESE TERMS AND CONDITIONS, YOU MAY RETURN THE SOFTWARE TO THE PLACE WHERE YOU OBTAINED IT FOR A REFUND.

1.    LICENSE. mSeven Software LLC, (“mSeven Software”) grants you a non-exclusive license to install and use the software product defined above (the “Program”) subject to the terms and conditions set forth in this Software License Agreement. You are responsible for the selection of the Program to achieve your intended results, and for the installation, use and results obtained from the Program.

2.    COPYRIGHT. This Program is owned by mSeven Software and is protected by the United States copyright laws and international treaty provisions. You must treat the Program like other copyrighted material with the following exception: Under this Software License Agreement, you may make archival copies of the Program for the sole purpose of having a backup copy.

3.    RESTRICTIONS ON USE. You may use the Program on one computer for each purchase made. You may not use, copy or transfer copies of the Program except as provided in this Software License Agreement. You may not reverse engineer, decompile or disassemble the Program. You may not sublicense, rent, lease, or distribute the Program.

4.    TRANSFER. You may assign your rights under this Software License Agreement to a third party who agrees in writing to be bound by this Software License Agreement before the assignment, provided that you transfer all copies of the Program and accompanying documentation in any form to the third party or destroy any copies not transferred.  Except as set forth above, you may not assign your rights under this agreement. 

5.    LIMITED PROGRAM WARRANTY. mSeven Software warrants that the Program, unless modified by you, will perform substantially in accordance with the accompanying documentation for a period of ninety (90) days from the date of delivery to the original licensee. If notified in writing during this warranty period that the Program is defective, mSeven Software will attempt to make the Program operate as warranted by providing a correction. If mSeven Software is unable to correct the defect within ninety days after notification, you may terminate your license and obtain a refund by returning all copies of the Program together with a copy of your license payment receipt. This limited warranty will apply only if the Program is licensed and located in the United States. mSeven Software does not warrant that the performance of the Program will meet your requirements or that the operation of the Program will be error free, or that defects in the Program will be corrected. THIS WARRANTY IS IN LIEU OF ALL OTHER WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO, THE IMPLIED WARRANTY OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.

6.    LIMITATION OF REMEDIES AND LIABILITY. The remedies described in this Software License Agreement are your exclusive remedies and mSeven Software's entire liability. IN NO EVENT WILL MSEVEN SOFTWARE BE LIABLE TO YOU FOR ANY DAMAGES, INCLUDING LOST PROFITS, LOST BENEFITS, OR OTHER INCIDENTAL OR CONSEQUENTIAL DAMAGES, RESULTING FROM THE USE OF OR INABILITY TO USE THE PROGRAM OR ANY BREACH OF WARRANTY. MSEVEN SOFTWARE'S LIABILITY TO YOU FOR ACTUAL DAMAGES FOR ANY CAUSE WHATSOEVER, AND REGARDLESS OF THE FORM OF ACTION, WILL BE LIMITED TO THE MONEY PAID FOR THE PROGRAM THAT CAUSED THE DAMAGES OR THAT IS THE SUBJECT MATTER OF, OR IS DIRECTLY RELATED TO, THE CAUSE OF ACTION.

7.    TERM. This Software License Agreement is effective until terminated. You may terminate at any time by destroying all copies of the Program in any form. It will terminate automatically if you fail to comply with any term or condition of the Software License Agreement. Upon such termination, you agree to destroy all copies of Program.

8.    GOVERNMENT LICENSEES. RESTRICTED RIGHTS LEGEND. The Program and accompanying documentation are provided with Restricted Rights. Use, duplication, or disclosure by the U.S. Government or any agency or instrumentality thereof is subject to restrictions as set forth in subparagraph (c)(1)(ii) of the Rights in Technical Data and Computer Software clause at DFARS 52.227-7013 and FAR 52.227-19. Contractor is mSeven Software LLC.

Security Everywhere Cloud Sync Architecture

Security Everywhere Architecture

White Paper

By David Pfeiffer
mSeven Software


Introduction

mSecure 3.0 introduces the Security Everywhere™ sync architecture that builds on mSecure's security foundation to provide a new level of data security and accessibility. Cloud syncing offers the great advantage of being able to sync anywhere and anytime without firewall restrictions and sync servers, but this convenience cannot come at the expense of data security.

Secure Password Manager

The Security Everywhere™ cloud sync architecture was designed to accomplish three main goals:

  • Sync securely without concern about the security of the cloud system, transmission system or backdoor attacks.
  • Sync anywhere using a general Internet connection without the hassle of firewall and router settings.
  • Sync anytime keeping all mobile and computing devices in sync without a sync server.

These goals were met in the Security Everywhere sync architecture. The Security Everywhere architecture enables mSecure data to be saved on a plethora of cloud systems while satisfying the above goals. To better understand design of any security system, it should be considered in the context of the threat model it mitigates.


Threat Modeling

There are three primary threat or attack models that we are concerned about:

  • Physical device attack (when device is lost or stolen), a subject for another white paper.
  • Sync file attack accessed from the cloud (when using Dropbox or other cloud sync)
  • Man-in-the-middle attack (interception of the sync file on the way to the cloud)

We currently lump the Sync file attack and the man-in-the-middle together because both represent a compromised cloud attack. We mitigate this attack by encrypting the data before it is sent to the cloud server. As you will see in this white paper that a strong password and a solid security system are key to keeping data secure.
 

Sync File Attacks

The sync file attack is an important threat scenario because if the hacker accesses the sync file from the cloud, they can apply significant computing resources to crack the file in a brute-force attack. We recognize that cloud servers can be compromised, so we designed the Security Everywhere architecture not to be dependent on the security of the transmission of the data to the cloud or the security of the cloud, but rather to encrypt the file using a strong sync password with a double encryption and compression system designed to thwart rainbow tables (reverse password look up tables for known data items) and the brute force attack. The system requires the user to create a separate strong sync password for the cloud file. The strong password with our encryption system would require super computer over 100 years to crack the data in a brute force attack.


Multiple Cloud System Support

The Security Everywhere sync architecture was design to operate with multiple cloud systems. Currently mSecure supports the Dropbox Cloud, but others such as iCloud is in development and other cloud systems are under consideration. If you have a cloud system that you would like to see us support, please email us at support@msevensoftware.com.
 

Architecture Specifications
  • 256-bit Blowfish Encryption
  • 256-bit SHA Password hash
  • File Compression
  • Enforcement of Minimum sync password length

Conclusion

The Security Everywhere™ sync architecture is a security system which employs multiple techniques and tools to secure your data. A strong Blowfish encryption system that has not been cracked together with strong passwords can keep your data secure. The Security Everywhere™ sync architecture provides anytime access while providing a solid security model to protect data from brute-force and cloud system attacks.

Sync via Dropbox for Mac and Windows

mSecure Password Manager Tutorial - Sync Data via Dropbox on Mac and Windows

This tutorial will review the process of syncing your data via the Dropbox cloud service using a Mac and a Windows computer.

 

Setting up Your Dropbox Account

This tutorial will walk you through the steps of setting up the Dropbox sync feature in mSecure. First we'll create a new Dropbox account, then we will go through the process of syncing your data with this new account using the mSecure Password Manager on a Mac or Windows computer. Lets get started.

Sync Preferences

After opening mSecure, click on mSecure > Preferences in the top left of your screen on a Mac, or Edt > Preferences in the menu bar at the top of the app window on a PC. Click on the "Cloud Sync" tab, then click on the drop down element just underneath the tabs in the preferences window.

Sync with Dropbox

After clicking on the drop down, you will see three options. Select the "Sync with Dropbox" option.


Setting up Your Dropbox Account

After clicking on the "Sync with Dropbox" option, mSecure will open your computer's default web browser where you will be able to authorize mSecure to link with your Dropbox account.

Set New Cloud Sync Password

If this is the first device on which you are setting up the Dropbox sync feature, you will be prompted to create a new cloud sync password. If you have already set up the Dropbox sync feature on another device, then you should already have a cloud sync password, and you can move on to the next step in the tutorial.

Set Existing Cloud Sync Password

Cloud Sync Preferences after Completing the Sync Setup

Active Sync Button in the Main View

Once the sync setup is complete, the sync button in the main view of mSecure will now be active. This button can be used to perform a manual sync of your data. Since the addition of the "Auto-Sync" feature, this button is rarely used because a sync is always triggered within 30 seconds of the last change you made to your data. Any time you add, edit or delete a group, type or record, the auto-sync feature will be utilized.

Thank you for viewing this tutorial, and if you have any questions, please contact us at support@msevensoftware.com.

Sync via Dropbox on Mobile Devices

mSecure Password Manager Tutorial - Sync Data via Dropbox on iOS and Android

This tutorial will review the process of syncing your data via the Dropbox cloud service using an iPhone and an Android device.

 

Setting up Your Dropbox Account

This tutorial will walk you through the steps of setting up the Dropbox sync feature in mSecure. First we'll create a new Dropbox account, then we will go through the process of syncing your data with this new account using the mSecure Password Manager on an iPhone or Android device. Lets get started.

Sync Icon

Now bring up mSecure on your device and tap on the Sync icon in the bottom toolbar. The Sync Setup window will appear.


Sync Setup Screen

Tap on the Dropbox item to start the Dropbox setup process.

NOTE: Normally, the "Sync Setup" screen is found in the Preferences under the "Sync Setup" menu item.

Sync Settings Screen

Turn on the Link Dropbox toggle in iOS, or tap on the Link to Dropbox Account button on an Android device. After you do this, the Dropbox Link screen will be displayed.

Dropbox Linking Page

Tap on the Allow button in the lower right corner of the Dropbox Link screen to authorize mSecure access to your Dropbox account.

Set New Cloud Sync Password

The Cloud Sync Password is special password shared by all of your devices syncing with the "mSecureSync.mscc" file in your Dropbox's "mSecure" folder. This password is used to encrypt and decrypt your data stored in that file, and each of your mSecure apps must have the same Cloud Sync Password set in their Dropbox settings in order for the sync feature to function properly.

Set New Cloud Sync Password (cont.)

In the iOS version, you will be taken to the Confirm screen. Enter your cloud sync password one more time on that screen, then you can enter your Hint for that password.

In the Android version, there is just one screen for setting your cloud sync password. After entering and confirming your password, you can enter a Hint for that passwrod.

Set Existing Cloud Sync Password

Conclusion

As of version 3.5.0, the Dropbox syncing has been automated, so you will not need to manually sync your records. If for some reason you would like to turn that feature off, you can find that in the Sync Settings for Dropbox in the preferences for mSecure. After finishing the set up, mSecure will perform a sync to create the sync file in your Dropbox's "mSecure" folder.

Thank you for viewing this tutorial, and if you have any questions, please contact us at support@msevensoftware.com.

Add Record MacOS

mSecure for MacOS Password Manager Tutorial Adding a Record

This tutorial will review the simple process of adding a record to mSecure. You can either watch the video on this operation or view the screen shots with written narration of the steps.


Video Tutorial

This video will take you through the process of adding a new record.

Narrative Tutorial with Screenshots

The following sequence of screen shots and narrative will walk you through the process of adding a record to mSecure Password Manager.

1

When you first run mSecure, the screen will look similar to the screen illustrated here.

On mSecure for MacOS (or Windows), start the record entry process by pressing the "Add Item" button in the toolbar.

This will take you to the New Record entry dialog.


2

Next we will use the Type Menu to select the type of record we would like to create. mSecure supports 17 different built-in types. You can modify any of these type templates to meet your needs or create totally new ones.

Tap on the Type menu (outlined in Red) to bring up the Types menu. Now locate the Credit Card item and tap on it.


3

Now enter the name of your credit card, your credit card number, expiration date, the name on the card, PIN and Bank name.

You can also add notes to the record; maybe a list of your purchases or the payment date.


4

A new feature in mSecure 3 enables you to set the group (or category) for the record and if the record is one of your most-used favorites.

After completing the entry of your data, press the OK button to save the record.


5

You will be returned to the main view where you can see your newly added record.
And that’s it!

The next tutorial will teach you how to sync your desktop and mobile devices.

 

Use Data on Mobile Devices

mSecure Password Manager Tutorial - Using your Data

This tutorial will review the simple process of using your data in mSecure to view your sensitive data, copy an item to the clipboard, share a record, launch a web browser and login to web site. You can either watch the video on this operation or view the screen shots with written narration of the steps.


mSecure Tutorial Video - Using your Data

This video will take you through the process of adding a new record.

mSecure Tutorial Screenshots with Narrative - Using your Data

The following sequence of screen shots and narrative will walk you through the process of adding a record to mSecure Password Manager.

Add Record on Mobile Devices

mSecure Password Manager Tutorial - Adding a Record

This tutorial will review the simple process of adding a record to mSecure. You can either watch the video on this operation or view the screen shots with written narration of the steps.


mSecure Tutorial Video - Adding a Record

This video will take you through the process of adding a new record.

mSecure Tutorial Screenshots with Narrative - Adding a Record

The following sequence of screen shots and narrative will walk you through the process of adding a record to mSecure Password Manager.

Pages

Subscribe to RSS - mSecure