GNOME Keyring

GNOME Keyring is a place where passwords (and soon encryption keys) for a user are stored in an encrypted file. The user enters a global password when first accessed.

How Gnome Keyring Secrets/Passwords Work

GNOME keyring has a password store which GNOME applications can access to store and find passwords and other sensitive data.

• Overview

• How to store passwords via the API

• API documentation

• Using Keyrings on Removable Disks

Non-pageable 'Secure' Memory

As of 2.19.3 gnome-keyring stores secrets and passwords in memory that is locked in physical RAM to prevent it from paging out to the swap file on the disk.

• Secure memory details

• Secure Memory API

PAM Automatic Keyring Unlocking

As of 2.19.6 gnome-keyring supports automatically unlocking keyrings when the user logs into the machine.

• More details

SSH Agent

As of 2.21.3 gnome-keyring includes an SSH agent that uses X.509 and/or OpenSSH encryption keys.

• More details

Certificates and Encryption Keys

As of 2.21.3 gnome-keyring stores and manages certificates encryption keys. It contains a PKCS#11 module which allows other applications to retrieve and use the certificates and keys.

• More details

• Configure applications to use gnome-keyring certificates and keys

• PKCS#11 module implementation

Other Information

• Notes for Distributors

• Password Keyring Formats

• PK and X.509 Formats

See also

• NetworkManager

CategoryAdministration