Documentation

Password Strength Analyzer

Cryptica's Password Strength Analyzer helps you evaluate the security of your passwords. This guide explains how the analyzer works, what the different metrics mean, and how to interpret the results.

Privacy First

All password analysis is performed locally in your browser. Your passwords are never sent to any server or stored anywhere.

How the Analyzer Works

The Password Strength Analyzer evaluates several factors to determine how resistant your password is to various types of attacks:

  • Length: The number of characters in your password. Longer passwords are generally more secure.
  • Complexity: The mix of different character types (lowercase, uppercase, numbers, special characters).
  • Entropy: A measure of randomness and unpredictability, calculated based on length and character set.
  • Pattern Recognition: Detection of common patterns that could weaken a password.

Strength Categories

Very weak

These passwords could be cracked almost instantly.

Characteristics:
  • Very short (less than 6 characters)
  • Contains only one type of character (e.g., only lowercase letters)
  • Common words or patterns (e.g., '123456', 'password')

Weak

These passwords could be cracked within minutes to hours.

Characteristics:
  • Short (6-8 characters)
  • Contains two types of characters (e.g., lowercase letters and numbers)
  • Simple modifications of dictionary words (e.g., 'password123')

Moderate

These passwords would take days to weeks to crack.

Characteristics:
  • Medium length (9-12 characters)
  • Contains three types of characters
  • Some complexity but may still contain recognizable patterns

Strong

These passwords would take months to years to crack.

Characteristics:
  • Good length (13-16 characters)
  • Contains all four types of characters
  • No obvious patterns or dictionary words

Very strong

These passwords would take decades to centuries to crack with current technology.

Characteristics:
  • Long (17+ characters)
  • High complexity with all character types
  • High entropy and randomness
  • No recognizable patterns or words

Understanding Analysis Metrics

Entropy (Bits)

Entropy is a measure of password unpredictability, expressed in bits. Each bit of entropy doubles the number of guesses needed to find the password through brute force.

  • Low Entropy: < 40 bits
  • Medium Entropy: 40-60 bits
  • High Entropy: 60-80 bits
  • Very High Entropy: > 80 bits

Character Composition

The analyzer breaks down the types of characters in your password and shows the distribution. A well-balanced password should include a mix of different character types.

Estimated Crack Time

This is an estimation of how long it would take to crack your password using current technology and brute force methods. Note that this is an approximation and can vary based on the attacker's resources.

Improving Your Passwords

Based on the analysis, the Strength Analyzer provides personalized suggestions to improve your password:

Length Suggestions

If your password is too short, the analyzer will suggest increasing its length to a more secure minimum.

Character Diversity

Recommendations for adding missing character types to increase complexity.

Pattern Warnings

Alerts about detected patterns that could make your password vulnerable, such as keyboard patterns, repeating characters, or sequential numbers.

Password Best Practices

  1. Use Unique Passwords: Never reuse passwords across different websites or services.
  2. Prioritize Length: When possible, choose a longer password over a shorter but more complex one.
  3. Avoid Personal Information: Don't include names, birthdays, or other personal details that could be easily guessed.
  4. Use a Password Generator: For maximum security, use Cryptica's password generator to create strong, random passwords.
  5. Use a Password Manager: Store your complex passwords in a secure password manager so you don't have to memorize them.
Back to Documentation
Password Strength