p.s. this is one reason why I always say the best security (but most inconvenient) is Store Master Password - Not At All. The master password cannot be stolen in this case because it is never stored. After the user types it, the mpw is set in local variables only, and those variables are deleted and nulled before the functions which define them return.