To protect your privacy: email us with billing or account questions instead of posting here.

Password strength between memorable password full words or not

shinyhat
shinyhat
Community Member
edited September 2023 in Memberships

I have a question about the memorable password generator available at https://1password.com/password-generator/.

Is there a difference in password strength when checking "full words" or not?

  1. huffy-bedazzle-base-river

  2. zald-sces-neeg-haf

Using the information from https://blog.1password.com/cracking-challenge-update/
, the first 4 fullword password (4 word, constant separator) would have a strength of 56.60bits.
Would the second password with full words unchecked have the same bit strength?

1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Browser: Not Provided

Comments

  • julia.v_1P
    julia.v_1P

    Hey @shinyhat

    Using the "full words" option, "huffy-bedazzle-base-river" is generated from a predefined wordlist, resulting in a strength of 56.65 bits, as indicated by the cracking cost table found here

    For "zald-sces-neeg-haf", where "full words" is unchecked, the generator creates a combination that's not strictly from the wordlist. Its exact bit strength isn't directly specified in the table, but its strength likely falls somewhere between the listed schemes.

    In conclusion, both types of passwords you provided are robust. However, for the ideal balance of memorability and strength, the full-word method is often recommended.

    Stay secure, and let us know if you have more queries!

This discussion has been closed.