How long should a strong password be in 2026?

NIST's 2024 minimum for sole-authenticator passwords is 15 characters. Practical recommendation: 20 characters of random alphanumeric+symbol for manager-stored passwords, or 6-8 word Diceware passphrases for memorised passwords. Both produce ~80+ bits of entropy, well past the practical-attack threshold.

Are passphrases really stronger than complex passwords?

For equivalent length, no — passphrases have lower bits per character because words come from a smaller pool. But passphrases are far easier to remember at greater lengths, so they're stronger in practice. A memorised 8-word Diceware passphrase (~77 bits) is far stronger than a memorised 8-character complex password (~52 bits) because users can actually retain it.

Does the password generator work offline?

Yes, after first page load. The generator uses your browser's Web Crypto API — no server calls, no network requests, no telemetry. Once the page is open, you can disconnect from the internet and continue generating passwords. This matters for high-security workflows.

Should I use uppercase, digits, and symbols, or just lowercase?

For a manager-stored password use the full character set — no cost to typing it and more entropy per character. For a passphrase you'll type or read aloud, lowercase + word separators is fine: a 6-word lowercase passphrase has more entropy than a 12-character mixed-case password and is easier to enter correctly.

What does 'ambiguous characters' mean and should I exclude them?

Ambiguous characters are 0 (zero), O (uppercase O), 1 (one), l (lowercase L), and I (uppercase i) — visually similar in many fonts. Exclude them when you'll read or type the password aloud. Don't exclude for manager-stored passwords — each excluded character reduces entropy slightly.

Is my generated password sent anywhere?

No. Every operation runs in your browser using the Web Crypto API. The password is generated locally, displayed locally, and copied locally. There's no server-side processing — no code path that could transmit it. Verify by opening browser DevTools Network tab and watching for any request when you regenerate.

Browse tools

Category: Passwords

Strong Random Password Generator: NIST-Aligned & Secure
TL;DR: A strong random password generator uses your browser’s Web Crypto API (crypto.getRandomValues) to produce passwords from genuine OS-level entropy, not predictable Math.random(). Aim for at least 80 bits of entropy — that’s roughly 16 mixed-case alphanumeric characters or a 6-word passphrase. Our free generator does both and shows you the entropy live, so you can see exactly how strong each output is.

The fundamental rule of password security has changed quietly: NIST’s 2024 update (SP 800-63-4) prohibits forcing users to mix uppercase, lowercase, digits, and symbols. The reason is empirical. Forced complexity rules produced more predictable passwords, not stronger ones — users picked the same dozen tricks (capitalise the first letter, replace o with 0, add ! at the end) and attackers learned them years ago. The new guidance: length is what matters. A 16-character lowercase-only password has more entropy than an 8-character password using the full ASCII set.

Our strong random password generator implements this guidance. It defaults to 20 characters with the full mixed-case alphanumeric+symbol pool, computes the entropy live, and runs entirely in your browser using the Web Crypto API — your password never travels to any server. This guide explains the math behind password strength, why Math.random() is dangerous, the three modes (random, pronounceable, passphrase) and when to use each, and the storage workflow that keeps strong passwords actually usable.

Why password entropy matters more than complexity

Password strength is measured in bits of entropy. A password with N bits of entropy means an attacker needs to try up to 2^N combinations to crack it by brute force. The math is simple: each character drawn at random from a pool of P characters contributes log₂(P) bits.

Character pool Pool size Bits per character

Lowercase only (a-z) 26 4.7

Lower + upper (a-z, A-Z) 52 5.7

Lower + upper + digits 62 5.95

Lower + upper + digits + symbols ~94 6.55

Multiply bits-per-character by length to get total entropy. The threshold to remember:
- Under 40 bits: weak. Crackable in minutes-to-hours by a modern GPU farm against any common password hash.
- 40-60 bits: moderate. Survives casual attacks but falls to determined attackers within days against fast hashes (MD5, SHA-256).
- 60-80 bits: strong. Beyond practical brute force for any single attacker; survives most state-of-the-art GPU farms for years.
- 80+ bits: excellent. Requires nation-state computational resources and decades of work. NIST’s recommended floor for high-security passwords.

Character pool	Pool size	Bits per character
Lowercase only (a-z)	26	4.7
Lower + upper (a-z, A-Z)	52	5.7
Lower + upper + digits	62	5.95
Lower + upper + digits + symbols	~94	6.55

Category: Passwords

Strong Random Password Generator: NIST-Aligned & Secure

Why password entropy matters more than complexity