• cm0002@lemmy.world
    link
    fedilink
    arrow-up
    7
    ·
    4 months ago

    I would hope so, sentences and words are some of the most secure passwords/phrases you can use

    • bjorney@lemmy.ca
      link
      fedilink
      arrow-up
      3
      ·
      edit-2
      4 months ago

      Words are the least secure way to generate a password of a given length because you are limiting your character set to 26, and character N gives you information about the character at position N+1

      The most secure way to generate a password is to uniformly pick bytes from the entire character set using a suitable form of entropy

      Edit: for the dozens of people still feeling the need to reply to me: RSA keys are fixed length, and you don’t need to memorize them. Using a dictionary of words to create your own RSA key is intentionally kneecapping the security of the key.

    • ClamDrinker@lemmy.world
      link
      fedilink
      arrow-up
      2
      ·
      edit-2
      4 months ago

      While this comic is good for people that do the former or have very short passwords, it often misleads from the fact that humans simply shouldn’t try to remember more than one really good password (for a password manager) and apply proper supplementary techniques like 2FA. One fully random password of enough length will do better than both of these, and it’s not even close. It will take like a week or so of typing it to properly memorize it, but once you do, everything beyond that will all be fully random too, and will be remembered by the password manager.

    • Fillicia@sh.itjust.works
      link
      fedilink
      arrow-up
      0
      ·
      4 months ago

      The part where this falls flat is that using dictionary words is one of the first step in finding unsecured password. Starting with a character by character brute force might land you on a secure password eventually, but going by dictionary and common string is sure to land you on an unsecured password fast.