Use enough words
Four random words are a practical starting point. Use more words for high-value accounts when the site accepts longer passwords.
Create a memorable multi-word passphrase with the length and formatting needed for accounts you use frequently.
Use this when a registration form accepts passphrases but rejects values over a certain length.
Optional. Use a public historical figure or fictional character only when memorability matters. Avoid real personal names, birthdays, or account-related words.
Passphrases
A passphrase is useful when you need length and usability at the same time. It works best when the words are randomly selected and the account allows longer passwords.
Four random words are a practical starting point. Use more words for high-value accounts when the site accepts longer passwords.
Hyphens and underscores are often accepted, while spaces may be rejected by some systems. If the form fails, try a different separator before reducing word count.
A familiar quote, birthday phrase, address, or pet name is easier to guess. Random words are less predictable than a phrase you would naturally choose.
Capitalization, numbers, and symbols are useful when a website requires them. If not required, extra length usually matters more than decorative complexity.
Example
Start with four random words and a hyphen separator. Add a number or symbol only if the form requires it. If the site states a maximum length, set it before generating so the complete passphrase stays within the limit.
Troubleshooting
First try a separator the form accepts, such as a hyphen or underscore instead of a space. Then check the maximum length. Reduce the word count or remove optional formatting before replacing random words with a personal phrase.
A passphrase is a password made from multiple words, usually with a separator and optional numbers or symbols.
Use at least four randomly selected words when the website allows a long password.
No. They are generated locally in your browser and are not sent to our server.