We always recommend a KeePass 2 database. If you're using KeePass 1 or Password Safe, we would recommend you upgrade to KeePass 2. See our help articles on that below:
- Upgrade Your KeePass 1 (KDB) Database to KeePass 2 (KDBX)
- How To Convert Your Database From Password Safe to KeePass
The KeePass 2 format allows a configurable encryption settings. To access your encryption settings:
On iOS
1) Unlock your Database
2) Tap Settings (Gear icon) > Encryption
On macOS
1) Unlock your Database
2) Click the Database > Encryption Settings... menu item
For your KDF, we recommend using Argon2d or Argon2id, both are modern GPU resistant KDFs. You should set the memory here to 16MB or lower. Higher memory settings (especially anything above 32MB) will cause issues using your database in AutoFill mode (due to iOS system limitations). Once set, you can then adjust the iterations and/or parallelism so that it takes about 1 second to unlock your database. Once your key is derived it is used to encrypt or decrypt your database. We recommend then either AES or ChaCha20 as the algorithm for this.
NB: The most important thing you can do is to have a very strong database password known only to you, and backed up securely offline.