What is Passphrase Generator?

The Passphrase Generator creates secure, easy-to-remember passphrases using random dictionary words. Unlike complex passwords, passphrases are both stronger and easier to type. Tune the word count, separator, capitalization, optional number, and optional symbol — every change refreshes the passphrase live.

Words are drawn from a 2,048-word EFF-style list using your device's cryptographic random source, giving exactly 11 bits of entropy per word. A 5-word passphrase reaches 55 bits, 7 words pushes you past 77 bits, which is well beyond brute-force territory. Separator, capitalization, one optional random number, and one optional appended symbol are all configurable, and you can show 1, 3, or 5 fresh passphrases at once so you can pick the one that feels right.

How to use

1. Set the number of words for your passphrase (4-12 words; 5 covers most everyday needs, 8+ gives extreme strength).
2. Choose a separator (hyphen, space, period, underscore, comma, or none) and toggle capitalization, a random number, or an appended symbol.
3. The passphrase refreshes live on every setting change — pick how many to show at once (1, 3, or 5), then copy the one you like.

When to use

• Creating a master password for a password manager that you'll type by hand every morning.
• Generating a recovery phrase for disk encryption (FileVault, BitLocker, LUKS) you can read off paper.
• Picking a Wi-Fi password long enough to defeat WPA2 dictionary attacks but still dictatable to guests.

Result

A 5-word passphrase like 'correct-horse-battery-staple-river' has approximately 64 bits of entropy — stronger than 'P@ssw0rd!' while being much easier to remember and type.

FAQ

Is a 5-word passphrase actually stronger than an 8-character random password?

Yes. Five words from a 2,048-word list give 55 bits of entropy; an 8-character password using all 95 printable ASCII characters gives 52.5 bits. The passphrase wins on both strength and the chance you'll actually remember it after a week off.

Won't an attacker know I'm using common words and run a smarter attack?

The math already assumes the attacker has the entire word list. The strength comes from the number of possible combinations (2,048 to the power of word count), not from the words being secret. This is Kerckhoffs's principle in practice.

Why does adding a number only nudge entropy up by a few bits?

A two-digit number (0-99) adds about 6.6 bits, and randomizing its position adds another 2-3 bits depending on word count. It's a small bump that helps with sites that mandate at least one digit in a password.

Which separator should I pick?

Hyphens are the safest default: they read clearly out loud and survive copy-paste through every form field. Underscores and commas behave the same way and pair well with most password managers. Spaces look natural but some legacy systems strip them, and periods can confuse a few CLI tools. Use no separator only if a site has a strict 16-character maximum.

Are the words really unpredictable, or is it a pseudo-random shuffle?

Selection uses the device's hardware-backed cryptographic RNG via crypto.getRandomValues, the same source banking and TLS rely on. There's no seed you can replay, and the result is regenerated fresh in memory every click.

Related Tools