>Yes, though the number of additional bits you get from increasing the size ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		scythe on Aug 11, 2011 \| parent \| context \| favorite \| on: Xkcd Password Generator >Yes, though the number of additional bits you get from increasing the size of the dictionary decreases fast. Well, sure -- but once you're at around two or three languages, you get to imagine that the attacker doesn't know what languages you're using. If I use English, Japanese, and Spanish, I can figure on the attacker needing to check the Germanic (English, Dutch, German), Romance (Spanish, French, Italian), and Asian (Japanese, Chinese, Korean) languages at a minimum. Jargon helps too, and proper names. "dijkstra bicycle entonces boojum daihinmin"

eru on Aug 11, 2011 | [–]

Always assume the attacker knows your scheme, but not your random bits.

pedro_a on Aug 12, 2011 | [–]

>Jargon helps too, and proper names. "dijkstra bicycle entonces boojum daihinmin"

Instead of that, just add an extra common word: "correct horse battery staple bicycle".

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact