Why is a Diceware passphrase better than a string of random characters?

Both can be strong — the difference is memorability per bit of entropy. A 6-word passphrase like cedar-violet-mantle-quartz-ember-trout carries ~62 bits and you can rehearse it a few times and keep it for life. A 62-bit random string is about 10 characters of full ASCII (kR7!mQ9@zX) — equally strong but far harder to memorize, dictate over the phone, or type on a TV remote without errors. Diceware was designed (by Arnold Reinhold in 1995) so that humans pick high-entropy secrets they'll actually remember instead of weak ones they can. For credentials you must keep in your head (your password-manager master password, a disk-encryption key), a passphrase wins. For credentials a manager stores for you, a long random string is fine too.

How many bits of entropy do I actually need?

As a rough modern guideline: under 40 bits is weak (crackable offline in seconds to hours), 40–60 is fair for low-value accounts, 60–80 is strong (this tool's 6-word English default is ~62), and 80+ is excellent / future-proof against offline GPU attacks on slow hashes. The crack-time readout here assumes 10^11 (100 billion) guesses per second — a realistic offline attack against a bcrypt-class hash — and searches half the keyspace on average. For a master password or a vault root, aim for 7+ English words (~72+ bits). Adding a digit or symbol contributes only ~3–4 bits each, so prefer one more word over a clever suffix.

How big is the word list and how is entropy calculated?

The English list is exactly 1296 words (= 6^4, an EFF-short-style curated subset of common 3–9 letter words), so each word adds log2(1296) ≈ 10.34 bits. The Chinese list is 387 common two-character words, ≈ 8.60 bits each. Entropy = wordCount × log2(listSize), plus log2(10) for an appended digit and log2(13) for an appended symbol if enabled. Capitalization is NOT counted because it's a fixed, attacker-known transform. To be clear: this is not the full EFF 7776-word "long" list (that would be ~12.92 bits/word but bloats the page) — we disclose the real size rather than overstate it. If you want EFF-long-list-equivalent entropy, just add one or two more words.

Can I use this offline, and does my passphrase ever leave the browser?

Yes on both counts. The word lists are bundled into the page, all randomness comes from the browser's crypto.getRandomValues, and there are no network requests — once the page is loaded you can disconnect and keep generating. The passphrase itself is never transmitted, never stored (no localStorage, no history list), and — unlike most inputs on this site — never written into the URL. Only your non-secret settings (word count, separator, language, casing, extras) go into the shareable link, so sharing your configuration can't leak the credential.

Create a master password you can actually type from memory

Your password manager's master password is the one credential you can never store in the manager itself — you have to remember it and type it on a phone, a locked-out laptop, a friend's machine. A random 20-char string is unforgiving here. Instead: pick English mode, 6 words, hyphen separator, leave extras off. You get something like `cedar-violet-mantle-quartz-ember-trout` — 62 bits, "Strong", and you can rehearse it three times tonight and have it for life. Type it into your manager's master field, then close this tab. The passphrase was never saved or sent anywhere.

Generate a Wi-Fi / IoT password the family won't fight with

A guest Wi-Fi password of `xK9#mq$2Lp!` gets read wrong off the fridge sticky note every single time, and visitors give up. Generate a 4-word passphrase with "Append a random digit" on: `garden-rocket-pillow-lemon7`. It reads cleanly across a room, types on a TV remote without rage, and at ~42 bits it's far past anything a drive-by attacker brute-forces against WPA2. Write the four words on the sticky note in plain language and nobody mistypes it.

Seed a recovery phrase for a shared team vault

You're setting up a break-glass credential for a team secrets vault and it has to be spoken over a phone call during an incident, not pasted. Use 7 words, space separator, capitalize each word: `Harbor Velvet Cinder Maple Otter Quartz Drift`. Over the phone you spell each word once; the recipient reads it back. At ~72 bits it's strong enough for a vault root, and "spell seven dictionary words" beats "spell H, capital-K, dollar-sign, nine…" when latency and stress are working against you.

Make per-service passphrases without a manager

You refuse to install a password manager but still want unique credentials per site. Generate a fresh 5-word passphrase for each account (`bronze-meadow-saddle-twine-pelican`), write it in a paper notebook you keep at home, and move on. Each is ~52 bits — strong, memorable enough to retype occasionally, and because every one is independently random, a breach of one site tells an attacker nothing about the others. The notebook stays offline; the passphrase never touches the URL or any server.

Demonstrate entropy to a security-skeptical colleague

Someone on your team insists `P@ssw0rd2024!` is "complex enough." Open this tool next to a password strength checker. Show them a 6-word passphrase reads 62 bits / centuries-to-crack while their 11-character l33t password reads ~36 bits and is in every breach dictionary. Toggle the word count up and down and watch the entropy number move by ~10.3 bits per word — a live, honest illustration of why length-from-randomness beats character-soup. The per-word bits readout makes the math impossible to hand-wave away.

Diceware Passphrase Generator

Cryptographically secure word-based passphrases — pick word count, separator, casing; live entropy; 100% in-browser, never in the URL.

Runs locally
Category Encoding & Crypto
Best for Checking small payloads, tokens, hashes, and encoded values quickly.

Privacy:Generated with crypto.getRandomValues entirely in this tab. The passphrase is never sent anywhere, never saved, and never put in the URL — only your settings are in the shareable link. Copy it into your password manager, then close the tab.

Word list

Words6 words

310

Separator

Extras

Capitalize each wordAppend a random digit (0–9)Append a random symbol (!@#…)

Your passphrase

Click Generate

StrengthFair

62 bits entropy (10.34/per word)274 days offline crack time

Note: This English list has 1296 words (~10.34 bits each), a curated EFF-short-style subset — not the full 7776-word list. Add 1–2 words to match EFF "long" list entropy.

What this tool does

A Diceware-style passphrase generator built on crypto.getRandomValues (a CSPRNG), not Math.random. Draw 3–10 random words from a curated 1296-word English list (or 387 common Chinese two-character words), choose a separator (space / hyphen / dot / none), optionally capitalize or append a random digit/symbol, and read the exact entropy in bits with a strength rating and offline crack-time estimate that update live. The generated passphrase is treated as sensitive: it is never saved and never written to the URL — only your settings are shareable. 100% client-side.

Tool details

Input: Numbers; The page exposes text boxes, numeric controls, file pickers, or structured inputs depending on the tool.
Output: Live result + Copy + Preview; The result area focuses on usable output, with copy, download, or preview actions when supported.
Privacy: Browser-side processing; The main tool logic does not call an external API, so inputs normally stay in the current tab.
Save / share: Shareable URL state; Key settings are encoded in the URL so another person can reopen the same setup.
Performance budget: Initial JS <= 14 KB; No WASM budget is declared, keeping the tool quick to open on mobile.
Best fit: Encoding & Crypto · Developer; Category and role tags drive related tools, internal links, and quick fit checks.

How to use

1. Input

Paste or drop your content into the tool panel.
2. Process

Click the button. All processing is local in your browser.
3. Copy / Download

Copy the result or download to disk in one click.

How Diceware Passphrase Generator fits into your work

Use it for quick browser-side encoding, decoding, hashing, token checks, and share-safe transformations.

Encoding jobs

Checking small payloads, tokens, hashes, and encoded values quickly.
Preparing values for APIs, URLs, docs, or support tickets.
Avoiding account-based tools when the input might be sensitive.

Encoding checks

Do not paste live secrets unless you are comfortable with local browser handling.
Confirm whether the operation is reversible before sharing the result.
For hashes, compare the exact algorithm and casing expected by the receiver.

Good next steps

These links move the current task into a more complete workflow.

Real-world use cases

Create a master password you can actually type from memory
Your password manager's master password is the one credential you can never store in the manager itself — you have to remember it and type it on a phone, a locked-out laptop, a friend's machine. A random 20-char string is unforgiving here. Instead: pick English mode, 6 words, hyphen separator, leave extras off. You get something like `cedar-violet-mantle-quartz-ember-trout` — 62 bits, "Strong", and you can rehearse it three times tonight and have it for life. Type it into your manager's master field, then close this tab. The passphrase was never saved or sent anywhere.
Generate a Wi-Fi / IoT password the family won't fight with
A guest Wi-Fi password of `xK9#mq$2Lp!` gets read wrong off the fridge sticky note every single time, and visitors give up. Generate a 4-word passphrase with "Append a random digit" on: `garden-rocket-pillow-lemon7`. It reads cleanly across a room, types on a TV remote without rage, and at ~42 bits it's far past anything a drive-by attacker brute-forces against WPA2. Write the four words on the sticky note in plain language and nobody mistypes it.
Seed a recovery phrase for a shared team vault
You're setting up a break-glass credential for a team secrets vault and it has to be spoken over a phone call during an incident, not pasted. Use 7 words, space separator, capitalize each word: `Harbor Velvet Cinder Maple Otter Quartz Drift`. Over the phone you spell each word once; the recipient reads it back. At ~72 bits it's strong enough for a vault root, and "spell seven dictionary words" beats "spell H, capital-K, dollar-sign, nine…" when latency and stress are working against you.
Make per-service passphrases without a manager
You refuse to install a password manager but still want unique credentials per site. Generate a fresh 5-word passphrase for each account (`bronze-meadow-saddle-twine-pelican`), write it in a paper notebook you keep at home, and move on. Each is ~52 bits — strong, memorable enough to retype occasionally, and because every one is independently random, a breach of one site tells an attacker nothing about the others. The notebook stays offline; the passphrase never touches the URL or any server.
Demonstrate entropy to a security-skeptical colleague
Someone on your team insists `P@ssw0rd2024!` is "complex enough." Open this tool next to a password strength checker. Show them a 6-word passphrase reads 62 bits / centuries-to-crack while their 11-character l33t password reads ~36 bits and is in every breach dictionary. Toggle the word count up and down and watch the entropy number move by ~10.3 bits per word — a live, honest illustration of why length-from-randomness beats character-soup. The per-word bits readout makes the math impossible to hand-wave away.

Common pitfalls

Capitalizing the first letter (or adding a predictable "1!" suffix) does NOT meaningfully raise entropy — an attacker assumes those transforms. This tool intentionally does not count capitalization toward the bits readout. Real strength comes from more words. If you want a capital for a site that demands "must contain uppercase", fine, but add a word too.
Reusing the same passphrase across sites is still reuse. A 6-word passphrase is strong against brute force, but if you type it into a phishing page or a breached site stores it in plaintext, length doesn't save you. Generate a fresh one per high-value account.
Don't "improve" the output by hand. People shuffle the words or swap a letter for a symbol to feel safer, but hand-edits cluster around predictable patterns and can lower the effective entropy. Trust the random draw; if you want more strength, increase the word count, which is exactly +10.34 bits each (English).

Privacy

The passphrase is generated with crypto.getRandomValues — the browser's cryptographically secure RNG, the same source TLS uses — entirely inside this tab. It is NEVER sent over the network, NEVER written to localStorage/sessionStorage, and — critically — NEVER placed in the URL. Only your *settings* (word count, separator, language, casing, extras) are encoded in the shareable link, so a "share settings" URL can't leak the credential into your browser history, a server access log, or a screenshot. The English word list (1296 words) and Chinese list (387 two-character words) are bundled into the page; nothing is fetched. Close the tab and the passphrase is gone from memory.

FAQ

Tool combos

Folks in your role tend to reach for these alongside this tool.

Developer

Browse all tools for this role

Diceware Passphrase Generator

What this tool does

Tool details

How to use

1. Input

2. Process

3. Copy / Download

How Diceware Passphrase Generator fits into your work

Encoding jobs

Encoding checks

Good next steps

Real-world use cases

Create a master password you can actually type from memory

Generate a Wi-Fi / IoT password the family won't fight with

Seed a recovery phrase for a shared team vault

Make per-service passphrases without a manager

Demonstrate entropy to a security-skeptical colleague

Common pitfalls

Privacy

FAQ

Password Generator

Password Strength Checker

Password Leak Checker

Bcrypt Generator

UUID Generator

MD5 / SHA Hash Generator

AES Text Encryptor

Affine Cipher Encoder & Decoder

Atbash Cipher

Bacon Cipher Encoder & Decoder

Base32 / Base58 Encoder & Decoder

Base62 Encoder & Decoder