Jump to content
Enpass Discussion Forum

Diceware in Password Generator


Pedro
 Share

Recommended Posts

I'd love to see an option for diceware passphrases in the password generator. A password like crazy-horse-battery is pretty secure and far easier to remember/type then kis-efum-aya-hava-ivid. Now I know you'll say we don't need to remember passwords since Enpass can type them for you, but there are situations when I can't use Enpass to type the password, such as the Enpass Vault, servers, computer logins etc.

  • Like 1
Link to comment
Share on other sites

Hey @Pedro, first tell me, do u have some telepathy power or what?  You read our minds dude!  :D The Diceware in password generator has already been implemented for almost all the platforms, and soon you'll see this feature in our beta version, which we are rolling out next week. But Pedro, you still don't need to remember any password, Enpass will always do that for you.xD

  • Like 2
Link to comment
Share on other sites

  • 2 months later...

Hello!

I did not know about the Diceware algorithm until it came out of beta. That being said, there are a great many institutions that require users to frequently change their Windows login password using a system that requires mixed case letters and digits but no punctuation. The old Enpass pronounceable password generator worked well for them. The new one simply fails miserably. With that in mind, here is a proposed enhancement (please consult the Password Generator options on any platform, making sure that "Pronounceable" is checked and the recipe is shown):

 

1. Allow "Digit" in the "Separator" box again.

2. When "Separator" equals "Digit," the "Digits" checkbox should be renamed "Extra Digits," or something to make it clear that it controls the appearance of groups of two or three digits when the separator is a digit. Or it can be disabled.

 

Thank you!

 

Stuart Simon

  • Like 1
Link to comment
Share on other sites

  • 2 months later...

Hi @Jaspreet Singh,

Ten words are good enough for any kind of security. As per diceware faq :

Quote
  • Five words are breakable with a thousand or so PCs equipped with high-end graphics processors. (Criminal gangs with botnets of infected PCs can marshal such resources.)

  • Six words may be breakable by an organization with a very large budget, such as a large country's security agency.

  • Seven words and longer are unbreakable with any known technology, but may be within the range of large organizations by around 2030.

  • Eight words should be completely secure through 2050.

 

  • Like 1
Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
 Share

×
×
  • Create New...