Password Generation in Python: Secure & Memorable

/ Python / By

Generating strong passwords is crucial for online security. However, creating random strings of characters can be difficult to remember. This guide introduces the Diceware method, a simple yet effective technique for generating secure and memorable passphrases. We’ll build a password generator program in Python that leverages Diceware, utilizing the secrets module for cryptographically secure random choices.

1. Why Diceware? Security and Memorability Combined

Diceware addresses the trade-off between password security and memorability. It relies on a word list with thousands of words, each associated with a unique 5-digit code. You roll dice to generate random numbers, which correspond to words in the list. The resulting passphrase is both secure (due to randomness) and memorable (due to the use of words).

2. Choosing Your Tools: The secrets Module

Python’s secrets module is designed for generating cryptographically secure random values. This is crucial for password generation, as you want passwords that are unpredictable and difficult to guess. The secrets.choice() function will be our primary tool for selecting random words from the Diceware list.

3. Building the Diceware Password Generator: Step-by-Step

import secrets

def generate_passphrase(num_words):
    with open("diceware.wordlist.txt") as f: 
        words = [word.split()[1] for word in f.readlines()[2:7778]]

    passphrase = " ".join(secrets.choice(words) for i in range(num_words))
    return passphrase

passphrase = generate_passphrase(7)
print(passphrase)

Explanation:

  1. Load Word List: Reads the Diceware word list file and extracts the words.
  2. Generate Passphrase: Uses a list comprehension with secrets.choice() to select random words from the list, then joins them with spaces.

4. Beyond the Basics: Customizable Passphrases

You can easily adapt this generator to meet specific requirements:

  • Password Length: Control the number of words in the passphrase.
  • Separator: Use different separators (e.g., hyphens, underscores) instead of spaces.
  • Customization: Include additional characters or symbols for increased complexity.

5. Key Takeaways: Password Generation Best Practices

  • Strong Randomness: Use the secrets module for cryptographically secure randomness.
  • Memorability: Choose words over random characters for easier recall.
  • Length: Longer passphrases are generally more secure.
  • Uniqueness: Use a different passphrase for each of your online accounts.

Frequently Asked Questions (FAQ)

1. Why is Diceware considered a secure method for generating passwords?

The randomness of the dice rolls makes it difficult to guess or crack Diceware passphrases.

2. Where can I find a Diceware word list?

You can download the official EFF word list from Diceware.com.

3. Should I use special characters or numbers in my Diceware passphrase?

While not required, you can optionally add special characters or numbers to enhance the passphrase’s complexity.