This is a simple diceword passphrase generator script which uses a limited dictionary to create easy-to-memorize and fast-to-type passphrases of known entropy.

Just clone the repo and run from the repo root.

./fastword.rb [word count (default 5)]

1. Memorability
2. Ease of typing
3. Known password strength

1. Grammatical differences are hard to memorize
2. Abstract words are harder to remember than multiple concrete words
3. Even a long password is fast to type if it contains only lower case letters and is made of real words

For example, here is a randomly generated four word traditional diceware passphrase (51.7 bits of entropy):

reacquire relapsing evacuee boondocks

Here is a six word passphrase generated by fastword (52.5 bits):

fish nod rope cut hope suit

This passphrase contains more words, but because it is limited to short words, it actually ends up being shorter – even with spaces (more on that later). And because the words in the dictionary are chosen to be concrete, it is easier to remember the fastword phrase.

By contrast, the traditional diceware password is hard to memorize. Not only do you have to remember the concept of "acquire", but you have to remember that it's "reacquire". Not only do you have to somehow incorporate "relapse" into a memorable concept, you have to remember that it's "relapsing", not "relapse", "relapsed", or "relapses". And that's to say nothing of "evacuee" and "boondocks".

The dictionary is chosen to fit the following properties:

1. All words are relatively common
2. All words should be easy to incorporate into a mental image
3. All verbs are infinitives, all nouns are singular. No grammatical nuance should be required to remember your password.
4. The list of words satisfies the "uniqueness" property tested by proveunique.rb. See below for further details, but this means that passwords generated can be used without spaces or uppercase letters without loss of entropy.

The resulting dictionary is just 431 words long. Compare that to the EFF's long word list, which is 7776 words. That means that fastword has fewer bits of entropy per word. But because the effect of dictionary size is logarithmic, growing the dictionary has diminishing returns. Fastword's dictionary provides ~8.75 bits of entropy per word, while the EFF dictionary provides ~12.92.

The result is that fastword passphrases need about 50% more words to achieve the same strength. But in exchange, it never forces you to memorize and type a word like "vagrantly" or "extenuate".

This section is going to get a little bit in the weeds, so here's the tl;dr: Every time it is updated, the word list is tested to make sure that it is safe to use generated passphrases without spaces or uppercase letters. That is, you can type the example passhprase above as fishnodropecuthopesuit without weakening the password.

Included in this repo is the script proveunique.rb. This checks to ensure that it is not possible to generate multiple passwords with the current list which have the same sequence of letters.

For example, if you add the word "hate" to the word list, this property is lost, because you can generate both:

• hat ear man tar meat
• hate arm ant arm eat

Therefore, for the reported entropy of 43.77 bits to be accurate, you must type those phrases with either spaces, or capitalization to separate the words (i.e. HatEarManTarMeat vs HateArmAntArmEat).

Use this at your own risk. This script is small side project I made for my own personal use. There may be errors in implementation which I'm unaware of which significantly weaken the passphrases generated. I encourage you to read the code yourself and convince yourself of its correctness before using it.