While searching for a good solution to organize any kind of notes, documents and other pieces of information, I stumbled upon Yojimbo from Bare Bones Software (and a friend also recommended it). Information from the Yojimbo website:
Yojimbo makes keeping all the small (or even large) bits of information that pour in every day organized and accessible. Its so simple, there is no learning curve. Yojimbo’s mechanism for collecting, storing and finding information is so natural and effortless, it will change your life, without changing the way you work.
There are as many uses for Yojimbo as there are users of it. It accepts almost anything — text, bookmarks, PDF files, web archives, serial numbers, passwords, or images — by dragging, copying, importing or even printing. You can get anything out of Yojimbo you put into it, too, in its original form. There’s no lock-in, export any time.
Especially the encryption feature sounds great:
Yojimbo helps you protect the privacy of your sensitive information, by providing easy to use encryption. This encryption is used automatically for Password items, and you may also choose to use it (on a per-item basis) for Notes, PDFs, and Web Archives.
Yojimbo uses the Advanced Encryption Standard (US FIPS PUB 197) algorithm, with a 256-bit key (AES-256).
But after some testing, it looks as if the contents of encrypted notes are still available as plaintext in Yojimbo’s database file:
Am I missing anything or is the encryption feature more or less nonsense?
Update January 15:
Reply from Yojimbo Support
Thanks for writing in; we appreciate your interest in Yojimbo, and I apologize for the delay in getting back to you.
The specific behavior you show is expected. When you encrypt a note (or other prexisting item), its contents are removed from the database, but remnants of that info may be visible in the disk file until the space is reclaimed by sqlite (CoreData).
Any info added after you’ve encrypted an item, will be stored only in an encrypted form, unless you subsequently choose to decrypt the item. (Viewing is a transient process which does not affect the state of the data on disk.)
I hope this answers your question, but if you have any further questions, or if we can otherwise be of assistance, please let us know.
0 Responses to “Yojimbo Encryption Feature – Nonsense?”