Length for AES256 symmetric encryption passphrase?

Robert J. Hansen rjh at sixdemonbag.org
Fri Apr 4 08:06:02 CEST 2014

> How long a passphrase is recommended for generating a 32 byte (AES) key?

Depends on how you generate it and how much entropy you want.

For my high-security passphrases I grab 16 bytes (128 bits) from
/dev/urandom and base64-encode it.  Works great for me and provides an
excellent security margin.

More information about the Gnupg-users mailing list