As a password generator?¶
The question naturally (well, for some of us) arises whether rogue-scroll is suitable for generating secure and practical passwords. The short answer is yes for security (with the right settings), but they are practical only for limited circumstances.
Security¶
With appropriate settings (see Warning: Ambiguous titles and entropy) scroll titles are uniformly distributed, and they are generated using a cryptographgically secure random number generator. Under these assumptions we can compute the entropy of the generator given specific parameters.
With three syllables per word and four words, a generated title has more than 86 bits of entropy. For example at the command line,
$ rogue-scroll -s3 -S3 -w4 -W4 -d- -H
ing-vly-rhov whon-mic-eng vly-bot-bie dalf-u-arze
or though the module
from rogue_scroll import Generator
g = Generator(
min_words = 4, max_words = 4,
min_syllables=3, max_syllables=3,
separator='-',
)
new_pwd = g.random_title()
H = g.entropy()
if H > 85:
print(f"Exceedingly strong: H = {H:.2f}")
else:
print(f"This shouldn't have happened: H = {H:.2f}")
Exceedingly strong: H = 86.40
That sample code also serves as a reminder that entropy is not a function of the generated password but is a function of the generator.
Messy entropy computation¶
This does not impact that user, but I wish to point out that the entropy computation is not nearly as simple or straightforward as it would be for something designed as a password generator.
It is easy to compute entropy when we have a fixed number of words, but once we allow the generator to produce a variable number of words, it gets harder.
For example, if you had a word list containing exactly 10,000 words and generated passwords by picking four words independently, the entropy would be:
More generally if W is the number of words in the word list, and N is the number of words in the password, the entropy, H, is:
But with variable numbers of words and syllables, the entropy calculation must account for all possible combinations, which is more complex than simply multiplying the number of choices per word. Scroll titles in rogue could be 2, 3, or 4 words long, and each word could have 1, 2, or 3 syllables.
The result of all this is that I have code that I am not happy with,
count_possibilities(),
used in entropy computations.
This is a consequence of enabling something that was never designed
to be a password generator work as one.
You might not be bothered by that, but I am.
Practicality¶
Generatoed rogue scroll titles
are not particularly memorable;
do not contain digits, uppercase letters, or symbols;
do contain spaces.
That limits their utility vastly, but there are still some practical uses for them. Because they are all lower case letters and spaces, they are relatively easy to type on a mobile keyboard compared to other things of a similar length.
The sorts of uses listed here assume that you are using a password manager so that you do not have to memorize these.
Insecurity questions¶
Who doesn’t want to say that their favorite teacher was “elan klivly labekum nelg” or that their father’s middle name is “vly prokbit iv roglanej”?
Infrequently typed local passwords¶
These can include home wifi passwords that you enter into each device just once. Passwords for disk encryption are typically only used when setting up the device or when the disk needs to be attached to a new device.
I am not claiming that these are better suited then many other password generation schemes, but they are fun. Particularly for those of us who spent way too much time playing rogue.