On Sat, Apr 16, 2011 at 8:02 PM, Robert J. Hansen <[email protected]> wrote: > The best numbers I've seen regarding passphrase entropy suggest that plain > English text has in the neighborhood of 1.5 to 2.5 bits of entropy per glyph. > Just FYI. You can find these numbers in Shannon's original works on > entropy, among other places.
Yes, well, that would mean that a 32-character English passphrase will average about 64 bits of randomness. Is that really enough to protect a key from an offline brute force attack? I think not, but am open to being persuaded. :) _______________________________________________ Gnupg-users mailing list [email protected] http://lists.gnupg.org/mailman/listinfo/gnupg-users
