Diceware testing
See original GitHub issueIt seems diceware passwords are often considered good with zxcvbn (I really like both zxcvbn and diceware). However as pointed out on this security exchange answer technically diceware without user modification have a dictionary size of 8000 so the randomness for 8000 words is 8000^3= 512 billion possible phrases
. So even though the passphrase maybe ‘TurkeyGlanceUnbiased’ gets a good zxcvbn rating, its basically the same as ‘abc’.
Should zxcvbn measure against known diceware dictionaries?
Issue Analytics
- State:
- Created 2 years ago
- Comments:16 (4 by maintainers)
Top Results From Across the Web
Diceware: Create Secure Passwords You Can Actually ...
I've built a few things you may find interesting: FastAPI Httpbin - HTTP Endpoints for testing of your app; Dead Simple QR Code...
Read more >diceware — Debian testing
diceware generates passphrases by concatenating words randomly picked from wordlists. It supports also real dice for passphrase generation.
Read more >diceware 0.10 documentation
diceware is a passphrase generator following the proposals of Arnold G. ... Python versions installed you can use tox for using them all...
Read more >dmuth/diceware: Generate secure passwords you ... - GitHub
Generate secure passwords you can actually remember! - GitHub - dmuth/diceware: Generate secure passwords you can actually remember!
Read more >Diceware Secure Passphrase and Password Generator
An easy way to generate a Diceware passphase or password.
Read more >Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start FreeTop Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Top GitHub Comments
@strider72 that’s basically the point. zxcvbn thinks a ~15 length password is good, but if this password is based on diceware it isn’t
EFF, Beale, Diceware