What is the Password Generator?

Our Password Generator is a versatile and user-friendly tool designed to help users create secure passwords with customizable options. Whether you're securing personal accounts, generating strong passwords for professional use, or ensuring compliance with security standards, this tool provides accurate and personalized password generation. Customize length, character types, and exclusions to get a strong, unique password instantly.

Key Features

How to Use

1. Select your desired password length using the slider
2. Choose character types (e.g., upper case, numbers) and exclusions (e.g., ambiguous characters)
3. Click the Generate button to create a new password
4. Review the strength and entropy metrics
5. Use the Copy or Regenerate options as needed

Password Strength

Password strength is a measure of how effective a password is against being guessed or against brute-force attacks. Although it varies, usually, password strength is an an estimate of how many trials would be required on average for someone to successfully guess the password. This is affected by the length, complexity, and unpredictability of the password. For example, if a password involves a person's name, birthday, or other personal information that typically would not be very difficult to find out, the password would likely make for a weak password.

Aside from the actual password, proper security controls play a significant role in reducing the risk of a security breach. Security controls include safeguards that are in place to detect, avoid, or minimize security risks. This includes controls such as two-step authentication for your password, or locking the account for a period of time after a given number of failed attempts.

How to Create a Secure Password

Creating a secure password can be achieved by following certain rules that are designed to increase password security. This largely involves constructing a strong password, but includes other aspects such as changing a password periodically, as well as being aware of, and avoiding the use of common passwords (password, 123456, qwert...). Below are some rules that can be used for creating a strong password:

• Include lower-case letter(s) [a-z]
• Include upper-case letter(s) [A-Z]
• Include numbers [0-9]
• Include symbols [!@#$%^&*()...]
• Exclude words involving the user's personal information
• Exclude words found in a password blacklist – there are password blacklists that can be found on the Internet, or it is possible that a company / other institution may have their own password blacklists
• Exclude company/institution name, as well as abbreviations of the name
• Exclude passwords that match common formats such as calendar dates, license plate numbers, phone numbers, or other common number formats

Also, many password policies typically include a minimum password length because generally, the longer a password, and the larger the variety of character types, the more secure the password.

The random password generator on this website provides the user with the option to exclude ambiguous characters. This includes characters like the letters "L" and "I" which may be difficult to distinguish on a computer. This is particularly relevant when using a random password generator. An upper-case "i" can be difficult to distinguish from a lower-case "L" or the number 1 in some cases. Confusion arising from ambiguous characters could potentially lock the user out of their own account. Note however, that excluding characters generally lowers the potential strength of a password.

Password Entropy

The password generator also determines the password entropy, measured in bits. The higher the entropy, the more difficult it will be for the password to be guessed. In the context of a brute force search (where every possibility is tested), a password entropy of 100 bits would require 2¹⁰⁰ attempts for all possibilities to be exhausted. On average however, about half of these possibilities would need to be exhausted before the correct one is found in a brute force search.