Why passphrases beat passwords
A 12-character random password (mixed case, digits, symbols) gives ~80 bits of entropy. A 6-word passphrase from a 7,776-word list (the full EFF list) gives ~77 bits. Same security, but:
- You can actually remember it. Compare “horse-correct-battery-stapler-jovial-cargo” to “Xq#9!mP2vL@k”. The passphrase is recallable; the password isn’t.
- You can type it. Long random passwords are mistype-prone, especially with shifted symbols.
- Better against shoulder-surfing. Words are individually visible; nobody memorizes a stranger’s passphrase from a glance.
This is why security teams have been pushing diceware-style passphrases for years. Edward Snowden uses them. So does Bruce Schneier. The math wins.
How entropy works here
Each word in the list contributes log₂(N) bits where N is the list size. This generator’s curated list is ~1,000 words, giving ~10 bits per word. So 6 words = 60 bits, 8 words = 80 bits. Note: the original EFF list has 7,776 words (12.9 bits/word), so the same 6 words from the full list give 77 bits.
For most everyday accounts (email, social media), 60-70 bits is enough. For password manager master passwords or PGP keys, target 100+ bits (10+ words from the full list).
Generated options
- Count: 3-12 words. Default 6 = balanced security/length.
- Separator: hyphen (default), space, dot, underscore, or none. Some sites reject spaces, use hyphens for those.
- Capitalize: title-case each word. Adds tiny entropy (1 bit/word at best) but mostly cosmetic.
- Append number: 4 random digits at the end. Adds ~13 bits. Useful when sites require digits.
The 3-results-at-a-time output lets you pick the one that’s easiest for you to remember without committing to anything that doesn’t roll off the tongue.
How to remember a passphrase
The trick: build a mental image. “horse-correct-battery-staple” becomes “a horse with a battery stapled correctly to its side.” Sounds dumb; works because the brain encodes weird stories better than abstract sequences.
Practice retyping the new passphrase 3-5 times right after generation. After a week it’s locked in.
Why use this generator vs. picking words yourself
Human-chosen “passwords” are predictable. People pick common words, follow obvious patterns, lean on personal info. The cryptographic randomness in this generator picks uniformly from the full list, no bias. That’s where the entropy guarantee comes from.
Frequently asked questions
Why is the word list smaller than EFF’s? This generator’s list is ~1,000 words for compactness. EFF’s full list has 7,776 (12.9 bits/word vs ~10 here). For high-stakes passphrases, use a tool that ships the full EFF list.
Can I just type 4 random English words? You can’t generate true randomness in your head, humans pick familiar/relatable words and the entropy collapses. The cryptographic random pick here uses crypto.getRandomValues, the OS-level secure random source.
Should my passphrases be unique per account? Yes, every account, every site, separately. Use a password manager (Bitwarden, 1Password) to store them. The passphrase you actually type is just your password manager’s master password.
How long until quantum computers break passphrases? Symmetric encryption (used for password hashing) doesn’t get broken by quantum, Grover’s algorithm only halves effective key strength. So 80-bit passphrases give ~40 bits against quantum attackers. 100-bit passphrases give 50 bits, still strong. The “quantum apocalypse” is for asymmetric crypto, not passphrases.