cm0002@lemmings.world to

Privacy@programming.dev · 14 hours ago

Vibe Password Generation: Predictable by Design

www.irregular.com

1

cross-posted to:
privacy@lemmy.ml

2

Vibe Password Generation: Predictable by Design

www.irregular.com

cm0002@lemmings.world to

Privacy@programming.dev · 14 hours ago

1

cross-posted to:
privacy@lemmy.ml

Vibe Password Generation: Predictable by Design - Irregular

www.irregular.com

LLM-generated passwords appear strong, but are fundamentally insecure. Testing across GPT, Claude, and Gemini revealed highly predictable patterns: repeated passwords across runs, skewed character distributions, and dramatically lower entropy than expected. Coding agents compound the problem by sometimes preferring and using LLM-generated passwords without the user’s knowledge. We recommend avoiding LLM-generated passwords and directing both models and coding agents to use secure password generation methods instead.

LLM-generated passwords (generated directly by the LLM, rather than by an agent using a tool) appear strong, but are fundamentally insecure, because LLMs are designed to predict tokens – the opposite of securely and uniformly sampling random characters.

You must log in or register to comment.

Chat

mr_anny@sopuli.xyz
link
fedilink
arrow-up
1·
13 hours ago
Not again this horrible web design/engine whatever laggin/stuttering the way it almost induce a epileptic seizure in me.