How to determine the entropy of a password

security passwords encryption

How can I tell if a password has good enough entropy to prevent brute-forcing on a realistic timescale? For example, if I have the following password, how can I determine if it is strong enough to prevent brute forcing?

"?e&ye&ga!ruaa!na!e%ta!e%rc#Iod$woH"2245

There's a site that can give you an estimated entropy figure for a password input. For the above example it suggests ~210 bits.

enter image description here

You can get a very rough guess of how long it will take to crack on How Secure Is My Password.

It suggests it would take a standard desktop PC 2 vigintillion years to crack the password in your example.

enter image description here

A more detailed analysis of the password can be seen on The Password Meter.


Your question - "Is it strong enough to prevent brute force?"

The real answer - "no"

The useful answer - "Probably, at least for the foreseeable future"

What you should be asking:

I need to protect this type of data, which has requirements x and y, and sensitivity z for my company. Is this an appropriate level of entropy.

Okay, to be fair, 210 bits as @Gareth pointed out is likely to be fine for a long time, but that may be overkill, and there are good reasons not to go over the top on encryption if you don't need to.

Related

HTML 5 input type="number" element for floating point numbers on Chrome
How to force IntelliJ IDEA to show welcome screen again?
How to get featured image of a product in woocommerce
HTTP Error 404.17 - Not Found
Datagridview full row selection but get single cell value
C# shortcut or shorthand getter setter
Removing leading zeros before passing a shell variable to another command
Pass by value faster than pass by reference
How to drop this index in MySQL?
Do i need to create automapper createmap both ways?
Android ImageView Fixing Image Size
Django, ImportError: cannot import name Celery, possible circular import?