![]() ![]() If anyone has advice on beefing up this point, such as a head-start on using mouse-movements or keystrokes to drum up entropy in javascript, please drop me a line. ![]() ![]() and if an attacker knew you used a certain bad random number generator, it could reduce how many passwords they have to guess. The potential cons include that I do not know the quality of the random number picker in your web browser. The pros to this method are that whatever password you pick on this page is never transfered across the wire (via server-side script, for example). This webpage runs entirely in Javascript, please feel free to check the source if you are curious. I've culled together a dictionary of easily recognized, pretty easy to spell words for this purpose ( dictionary available for download) so even if an attacker knows the wordlist you are picking from, it remains astronomically difficult for them to check every permutation to guess the correct one. Passphrase Generator Passphrase Generatorĭid you know that a passphrase of three to five randomly selected words can be just as difficult for a brute-force attacker to guess as a gibberish password of 5 to 9 randomly selected ASCII characters (uppercase, lowercase letters, numbers, and every printable symbol selected with no rhyme or reason at all)? However, because easily recognizable words can evoke imagery in the human mind and nonsense juxtoposition strengthens that imagry - teasing the brain to build a story to make sense of the chaos - passphrases are monumentally simpler for humans to remember.ĭon't believe me? Try it! Click a button above to call up a selection of random words, and then just *try* to forget the words you just saw! xD. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |