From Winzip's help file: "full strength of AES encryption requires a password of approximately 32 characters for 128-bit encryption and 64 characters for 256-bit encryption."
Certainly, no one can memorize 32 random characters [if using all ASCII characters]. Also, people dont use the same PW for all logins; hotmail and gmail pws are different, as are windows and forum accounts. Thus, pw length of 8-12 is best.
On my PC using 4 characters to encrypt a file:
I used ARCHPR.
http://www.elcomsoft.com/archpr.html
using this PW: N#8w
min:1 max:4
using Winrar 128-bit will take 2 months to crack.
using Winzip's 256-bit, 10 days.
[proving Winrar's 128-bit is tougher to crack than Winzip's 256-bit]
try it out, post results.
Also:
http://lastbit.com/pswcalc.asp
pw length: 8
Speed: 10m/sec
# comps: 10
Full ASCII
up to 28 months [2.3years].
Cool. Thus proving an 8 character pw is more than secure against anyone not hooking up 1000 PCs.
Certainly, no one can memorize 32 random characters [if using all ASCII characters]. Also, people dont use the same PW for all logins; hotmail and gmail pws are different, as are windows and forum accounts. Thus, pw length of 8-12 is best.
On my PC using 4 characters to encrypt a file:
I used ARCHPR.
http://www.elcomsoft.com/archpr.html
using this PW: N#8w
min:1 max:4
using Winrar 128-bit will take 2 months to crack.
using Winzip's 256-bit, 10 days.
[proving Winrar's 128-bit is tougher to crack than Winzip's 256-bit]
try it out, post results.
Also:
http://lastbit.com/pswcalc.asp
pw length: 8
Speed: 10m/sec
# comps: 10
Full ASCII
up to 28 months [2.3years].
Cool. Thus proving an 8 character pw is more than secure against anyone not hooking up 1000 PCs.