Warning: the strength of these depends on how good of a CSPRNG your browsers crypto.getRandomValues() function is.

Warning: the security of the plaintext depends on how good your browser/OS protects the contents of password fields

Advice: Anything less than 69 bits is weak for authentication - anything less than 128 bits is weak for encryption

Advice: For authentication shoot for 109 bits or more (updated 2025-05-29)

Note: if an attacker knows the length of your password you lose 1 bit of entropy

Gen 62! Itr = = 284 bits of entropy

Gen 62^X X = = X bits of entropy

Gen EasyToTypePW Add Dashes Word Count = Number Length = Count = = X bits of entropy

Gen AdjNounPW Add Dashes Word Count = 2, Number Length = Count = = X bits of entropy