Browser: Generate pronounceable passwords

Created on 27 Mar 2017  路  6Comments  路  Source: bitwarden/browser

I want to be able to generate pronounceable passwords similar to what the LastPass password generator (pwdgen) can do (https://lastpass.com/generate). A feature on top of this I would like to see is the pwdgen replacing letters with numbers and symbols if the either (or both) the numbers and symbols checkbox is selected.

For example:

Letter      Replaced with
a           @
e           3
l           1
s           5, $
o, O        0
i           !

It would be great if bitwarden also allows the user to customize what letter is replaced with what number/symbol, and define their own for pwdgen to use.

enhancement
Source
picture ple103

Most helpful comment

There's quite a lot of literature out there on pronounceable passwords. The most commonly used pronounceable password scheme is probably the old NIST standard FIPS 181 (which was later found to have weaknesses) as used in apg, followed by the algorithm in the classic pwgen utility. There's also stuff using newer encoding specs like Koremutake.

Passphrase generation seems to generally be based on Diceware. A discussion on implementation considerations: https://discussions.agilebits.com/discussion/54598/old-pronounceable-vs-new-diceware-passwords

picture trisk on 4 Apr 2017
👍2

All 6 comments

If we added something pronounceable, it would be done with passphrase words. Related: https://github.com/bitwarden/mobile/issues/14

I like the number/symbols option though as well.

kspearrin picture kspearrin on 27 Mar 2017
👍1

Why not both? Passphrases and pronounceable passwords.
Pronounceable passwords make great random usernames too :)

ple103 picture ple103 on 27 Mar 2017

There's quite a lot of literature out there on pronounceable passwords. The most commonly used pronounceable password scheme is probably the old NIST standard FIPS 181 (which was later found to have weaknesses) as used in apg, followed by the algorithm in the classic pwgen utility. There's also stuff using newer encoding specs like Koremutake.

Passphrase generation seems to generally be based on Diceware. A discussion on implementation considerations: https://discussions.agilebits.com/discussion/54598/old-pronounceable-vs-new-diceware-passwords

trisk picture trisk on 4 Apr 2017
👍2

Non-localised, but a starting point: https://github.com/rsanders/correct-horse-battery-staple

with the default dictionary, you get about 10^12 password combinations. See it in action at http://correcthorsebatterystaple.net/

josh-parris picture josh-parris on 11 Apr 2017

Related: https://github.com/bitwarden/browser/issues/330, https://github.com/bitwarden/core/issues/93

jnv picture jnv on 16 Jan 2018
👍1

We are moving away from tracking Bitwarden feature requests like this one as GitHub issues. We have created a Bitwarden Community Forum which has a section for submitting, voting for, and discussing product feature requests.

Please sign up on our forums, search to see if this request already exists. If so, you can vote for it and contribute to any discussions about it. If not, you can re-create the request there so that it can be properly tracked.

This issue will now be closed. Thanks!

kspearrin picture kspearrin on 8 Mar 2018
Was this page helpful?
0 / 5 - 0 ratings

Related issues

IanSavchenko picture IanSavchenko  路  6Comments
kosvrouvas picture kosvrouvas  路  3Comments
jikamens picture jikamens  路  3Comments
gavrilfb picture gavrilfb  路  4Comments
kspearrin picture kspearrin  路  5Comments