DicePhrase 作者: Lucas Bleackley Petter
A tool for making strong, memorable passphrases.
您需要 Firefox 来使用此扩展
扩展元数据
屏幕截图
关于此扩展
DicePhrase helps you easily create strong, memorable passphrases, such as "FragrantRenewedAnyoneBakedPossum" or "BazookaClangUnstuckTransferQuoteJokingly", by rolling six-sided dice to randomly select from a set of thousands of words. This system creates passphrases that are more unguessable than if you were to pick words on your own or trust the computer to generate words automatically.
Passphrases, not passwords
Long, random passphrases are more secure because they're more difficult for an attacker to guess than simple passwords. While a password like "Batman1989" is too easily guessed and "&1KJl6a8y$g*01W}i21!MZ" is too hard to remember, random passphrases like "DonutConfinedCurveHurricaneJuggleWidget" are strong and memorable. Passphrases don't need to be personal to be memorable. Personal things like birthdays, addresses, anniversaries, names, lyrics, books, movies, etc. are not very secret; anyone can find out your address, pet's name, or favourite songs. Picking words randomly ensures your passphrase is unbiased and unpredictable.
Roll the dice
You do five dice rolls to randomly select each word for your passphrase, so if you need a 6-word passphrase, that's 30 dice rolls. Input the numbers into DicePhrase, which will then use them to look up corresponding words in a table of 7776 possible words to generate your new passphrase. With each additional word, the chances that anyone could ever guess your passphrase become exponentially smaller.
Why use dice?
Dice are a more reliable and transparent source of randomness than choosing numbers yourself or having a computer generate random numbers. Humans tend to have too much bias when attempting to make random selections, and it's hard to prove that the complex systems used by computers for creating randomness are truly unpredictable. If you don't need such a high level of unpredictability, DicePhrase can generate pseudo-random numbers without dice when you click "Skip" in the main window, although using dice is still recommended.
When to use passphrases
Passphrases are ideal when used to encrypt information. They're perfect as the master password for a password manager so you only need to remember a single strong passphrase. They're also great for securing WiFi networks, disk encryption, PGP or SSH encryption keys, and any other encryption system. Use them whenever you need memorable authentication in general. For online accounts, having strong passphrases is good, but may not be enough protection from attackers who use techniques like phishing to steal credentials. You should enable Two-Factor Authentication, which adds a second step to the login process, and consider saving unique passphrases for each account in a password manager.
Secure design
DicePhrase is built to protect the confidentiality of your passphrases. Most importantly, passphrases aren't saved, they're automatically cleared 10 minutes after they've been created (you should memorize them or save them in a password manager application). DicePhrase is also free and open source software, so anyone can inspect the code to verify its safety. You can read more about DicePhrase's security design, as well as how to report bugs, in the Help document.
DicePhrase is based on best practice strategies for creating passphrases by the Electronic Frontier Foundation, security technologist Micah Lee, and the Diceware project.
https://www.eff.org/dice
https://firstlook.org/theintercept/2015/03/26/passphrases-can-memorize-attackers-cant-guess/
http://world.std.com/~reinhold/diceware.html
For more info about DicePhrase, please see:
https://www.lucaspetter.com/software/dicephrase/
For support and help, please see:
https://github.com/dicephrase/dicephrase/blob/master/doc/help.md
To see the code, report bugs, or help build DicePhrase, please see:
https://github.com/dicephrase/dicephrase
Passphrases, not passwords
Long, random passphrases are more secure because they're more difficult for an attacker to guess than simple passwords. While a password like "Batman1989" is too easily guessed and "&1KJl6a8y$g*01W}i21!MZ" is too hard to remember, random passphrases like "DonutConfinedCurveHurricaneJuggleWidget" are strong and memorable. Passphrases don't need to be personal to be memorable. Personal things like birthdays, addresses, anniversaries, names, lyrics, books, movies, etc. are not very secret; anyone can find out your address, pet's name, or favourite songs. Picking words randomly ensures your passphrase is unbiased and unpredictable.
Roll the dice
You do five dice rolls to randomly select each word for your passphrase, so if you need a 6-word passphrase, that's 30 dice rolls. Input the numbers into DicePhrase, which will then use them to look up corresponding words in a table of 7776 possible words to generate your new passphrase. With each additional word, the chances that anyone could ever guess your passphrase become exponentially smaller.
Why use dice?
Dice are a more reliable and transparent source of randomness than choosing numbers yourself or having a computer generate random numbers. Humans tend to have too much bias when attempting to make random selections, and it's hard to prove that the complex systems used by computers for creating randomness are truly unpredictable. If you don't need such a high level of unpredictability, DicePhrase can generate pseudo-random numbers without dice when you click "Skip" in the main window, although using dice is still recommended.
When to use passphrases
Passphrases are ideal when used to encrypt information. They're perfect as the master password for a password manager so you only need to remember a single strong passphrase. They're also great for securing WiFi networks, disk encryption, PGP or SSH encryption keys, and any other encryption system. Use them whenever you need memorable authentication in general. For online accounts, having strong passphrases is good, but may not be enough protection from attackers who use techniques like phishing to steal credentials. You should enable Two-Factor Authentication, which adds a second step to the login process, and consider saving unique passphrases for each account in a password manager.
Secure design
DicePhrase is built to protect the confidentiality of your passphrases. Most importantly, passphrases aren't saved, they're automatically cleared 10 minutes after they've been created (you should memorize them or save them in a password manager application). DicePhrase is also free and open source software, so anyone can inspect the code to verify its safety. You can read more about DicePhrase's security design, as well as how to report bugs, in the Help document.
DicePhrase is based on best practice strategies for creating passphrases by the Electronic Frontier Foundation, security technologist Micah Lee, and the Diceware project.
https://www.eff.org/dice
https://firstlook.org/theintercept/2015/03/26/passphrases-can-memorize-attackers-cant-guess/
http://world.std.com/~reinhold/diceware.html
For more info about DicePhrase, please see:
https://www.lucaspetter.com/software/dicephrase/
For support and help, please see:
https://github.com/dicephrase/dicephrase/blob/master/doc/help.md
To see the code, report bugs, or help build DicePhrase, please see:
https://github.com/dicephrase/dicephrase
为您的体验打分
权限详细了解
此附加组件需要:
- 输入数据到剪贴板
更多信息
- 附加组件链接
- 版本
- 2.2.0
- 大小
- 1.26 MB
- 上次更新
- 10 个月前 (2024年3月31日)
- 相关分类
- 许可证
- 仅 GNU 通用公共许可证 v3.0
- 版本历史
- 标签
添加到收藏集
2.2.0 的发布说明
- Update to the Manifest v3 extension platform. DicePhrase now requires Firefox v109 or later.
- Fixed an issue that caused the passphrase to be overwritten when a new passphrase was created while a previous passphrase tab was still open.
- Fixed an issue that caused the passphrase to be overwritten when a new passphrase was created while a previous passphrase tab was still open.
Lucas Bleackley Petter 制作的更多扩展
- 目前尚无评分
- 目前尚无评分
- 目前尚无评分
- 目前尚无评分
- 目前尚无评分
- 目前尚无评分