Local generation with Web Crypto

Secure Passphrase Generator

Create a memorable multi-word passphrase with the length and formatting needed for accounts you use frequently.

Password settings

Passphrases use a local word list with 178 unique words. No words or results are sent to a server.

Use this when a registration form accepts passphrases but rejects values over a certain length.

Optional. Use a public historical figure or fictional character only when memorability matters. Avoid real personal names, birthdays, or account-related words.

Generated passwords

0

Security notes

  • Passwords are generated locally in your browser.
  • We do not store, send, or log generated passwords.
  • Uses the Web Crypto API for secure randomness.
  • Longer passwords are usually stronger than short complex passwords.

Passphrases

When a passphrase is better than a random string

A passphrase is useful when you need length and usability at the same time. It works best when the words are randomly selected and the account allows longer passwords.

Use enough words

Four random words are a practical starting point. Use more words for high-value accounts when the site accepts longer passwords.

Pick a separator the form accepts

Hyphens and underscores are often accepted, while spaces may be rejected by some systems. If the form fails, try a different separator before reducing word count.

Do not write a personal sentence

A familiar quote, birthday phrase, address, or pet name is easier to guess. Random words are less predictable than a phrase you would naturally choose.

Add rules only when needed

Capitalization, numbers, and symbols are useful when a website requires them. If not required, extra length usually matters more than decorative complexity.

Example

A frequently typed account with a 16-character minimum

Start with four random words and a hyphen separator. Add a number or symbol only if the form requires it. If the site states a maximum length, set it before generating so the complete passphrase stays within the limit.

Troubleshooting

The passphrase is rejected

First try a separator the form accepts, such as a hyphen or underscore instead of a space. Then check the maximum length. Reduce the word count or remove optional formatting before replacing random words with a personal phrase.

Passphrase checklist

  • Use randomly selected words, not a personal phrase.
  • Choose a separator accepted by the website.
  • Add a number or symbol only when required.
  • Store the passphrase in a password manager if it protects an important account.

FAQ

What is a passphrase?

A passphrase is a password made from multiple words, usually with a separator and optional numbers or symbols.

How many words should a passphrase contain?

Use at least four randomly selected words when the website allows a long password.

Are generated passphrases stored?

No. They are generated locally in your browser and are not sent to our server.