Skip to content

Next generation diceware password generator - randomness guaranteed!!!

License

Notifications You must be signed in to change notification settings

mandulaj/diceware-v6

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

21 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

diceware-v6

NEXT generation diceware password generator - randomness guaranteed!!!

XKCD nailed it....

####WTF is this??? Diceware is a popular and fun way of generating military grade passwords that are money-back-guaranteed to be random!!! Most diceware password lists only provide 7776 words of which many are short or contain special, hard to remember characters (yikes). diceware-v6 brings a revolution by introducing the extended 46656 word-list with words up to 10 characters long. This makes the passwords generated using it more secure and simpler to remember.

####How to generate a secure random password

Diceware is very easy to use. All you need is a die. It can help to get hold of 6 dice in order to speed up the RNG (1 die runs out of entropy very quickly).

  1. Download and verify the signed diceware file from https://raw.githubusercontent.com/zpiman/diceware-v6/master/diceware-v6.txt.asc - You can also download the 6pg PDF and print it out in font-size 2
  2. Roll the die 6 times and record numbers eg. 131512 - alternatively you can roll 6 dice at once
  3. Look up the word corresponding to the number in the diceware file.
  4. This is the first word of your password eg.131512 awesome
  5. Repeat the steps 2-4 until you have a password of the desired length. 6 or more words are going to provide a better-than-good password. Check the section below for information on security.
  6. Remember the password well and securely discard any paper which you use to write this password down. I prefer tearing the paper to bits and then burning them one by one. The ash I dissolve in hydrochloric acid. I strongly dilute the solution with water and use it to water my garden.

#####Alternatively You can also run this command in your shell. However this method is not very secure!!!!

$ cd scripts
$ ./dice.py

####Example

Make 7x6 rolls

  • 311162 - fitness
  • 512331 - pronoun
  • 143332 - blunts
  • 642514 - tyrannic
  • 521512 - ravage
  • 653245 - venomously
  • 624613 - tasted

Password: "fitness pronoun blunts tyrannic ravage venomously tasted" ####Security

46656 words might seam like a very small number to be considered secure. However the power of diceware comes from the number of consecutive words. There are 46656 ways to choose 1 word, however 2176782336 ways to choose 2 words. The more words are added, the more ways to arrange them and thus the more secure the password. 6-7 words are a very good compromise between security and simplicity of memorization.

#####This table shows the security of different password lengths. Anything in bold is imo overkill....

# of Words Password permutations Time to brute force (100B/s)
1 46656 light travels about 100 m
2 2176782336 0.02 seconds
3 101559956668416 16 minutes
4 4738381338321616896 1.5 years
5 221073919720733357899776 70 millennia
6 10314424798490535546171949056 3.3 billion years
7 481229803398374426442198455156736 150 trillion years
8 22452257707354557240087211123792674816 7.1 quintillion years
9 1047532535594334222593508922191671036215296 330 sextillion years
10 48873677980689257489322752273774603865660850176 something-crazyllion

About

Next generation diceware password generator - randomness guaranteed!!!

Resources

License

Stars

Watchers

Forks

Packages

No packages published

Languages