What are your password entropy recommendations? Any other source are welcome.
The same as EFF’s recommendation:
That is at least 77.54 bits of classical entropy based on KeePassXC measurements.
I would say at least 80bit for website logins and at least 128bit but preferably near 256bit for encryption.
For device password’s where a strong secure element is in place, maybe different stuff
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| Elaborate more on passphrase length and strength | 22 | 3386 | December 30, 2023 | |
| What should password/phrase strength be for online accounts? | 1 | 436 | June 19, 2023 | |
| Is KeePassXC accurate calculating entropy of a password? | 18 | 1583 | December 4, 2025 | |
| KeePassXC password recommendations | 3 | 488 | September 27, 2025 | |
| Recommend making passphrases in KeePassDX | 0 | 704 | June 21, 2023 |
Massive organizations are monitoring your online activities. Privacy Guides is your central privacy and security resource to protect yourself online.
Privacy Guides is a non-profit, socially motivated website that provides information for protecting your data security and privacy.
We do not make money from recommending certain products, and we do not use affiliate links.