About the Password Regenerator |
|
Why use a password regenerator?Most of us cannot possibly remember long and complex passwords for every Internet site or online account that we use. Most of us have dozens if not hundreds of login credentials for a dizzying array of websites. Remembering all those passwords is basically impossible. As a result, many people use the same password across many different online sites. Using the same passwords online is very insecure and dangerous. If one site is hacked, and your login and password is stolen, the hackers could use your stolen credentials to hack into any, or even all, of the other online sites that you use using the same username and password.Despite the danger, people often use the same passwords across many different web sites which is much like using your house key as your car key, as your office key, as your bank account key, as your wallet key, as your safety deposit box key, as your jewellery box key, and so on... Too many people use weak passwords too. Weak passwords are those that are too short (which is anything less than 20 characters) or use simple words and perhaps numbers only. What is the most commonly used hacked password? Yep, "Password1" is it! In other words, passwords are too short and are not sufficiently randomised. Technically, the passwords have insufficient entropy. I encourage you to look that up. The following text is randomised: NIflTn8Rq3Gx6Sc while this text: mybrowndog99 is not randomised. Guess which password is better at keeping the hackers out. Ah but I can already hear you saying "those random passwords are impossible to remember!". Possible SolutionsOne solution is to use multi factor authentication (MFA) whenever it is available. And you should use MFA! However, MFA is not always available, it can be cumbersome to use, and it is not without its own weaknesses. But even if you use MFA, you still need to use a strong and unique password for each site.Another solution is to use a password vault service (such as LastPass, 1Password, Bitwarden...). These are also cumbersome and worse still, they can be hacked which can expose all of your vaulted passwords and logins. Lastpass itself has been hacked more than once! Our SolutionOur strong solution uses a password regenerator. We take a strong master password (that you choose) and we concatenate it with a user chosen identifier/site key. The combination of the two is then used to create a 32 character, unique, non reversible, and randomised password (otherwsie known as a 'hash'). What is most important here is is that the hash is unqiue and specific for each of your own particular sites that you login to. The password hash is long (32 characters) and very complex (it uses many non alphanumeric characters as well as random numbers and random letters).Here is an example: 4994b2Q#482f25F!c08f2fQ~4dbccaI#. The magic here, is that you don't have to remember (or write down or save) that string of characters. Because each time you return to this website, you just enter your master key and site identifier and the same hash will be regenerated for you each time. So, each time that you need to login to a particular website, you reuse your chosen master password and then supply the unqiue identifier for each particular site and then regenerate the same password for that site. You can do this for as many online sites or purposes as you need. The most important benefit of using the password regenerator is that every regenerated password for every site is different (as well as being long and complex)! In other words, this tool gives you a very simple and secure method for using different and very strong passwords on every web site or on line account that you have. You only need one 'master key' password. And then use individual 'site keys' or 'identifiers' that are so much more secure while being dramatically easier to remember because they can be simple text like 'check account', 'amazon' or 'facebook'. You can use any site key that you choose. Initial PreparationThere are two things you need to before you can start using the password regenerator.First, choose a master password. You do this once. The master password will probably be permanent (it will rarely need to change, probably never). It should be a complex password and reasonably long. The regenerator requires the master password to be at least 8 characters long. Pick something memorable, long, and uniquely special. Such as, "one flew over the cuckoos nest" or "I like planet Jupiter" or "Take it or leave it" or "I always want more chocolate" or "Interstellar 2014". Just make sure that you pick something that no one else but you could possibly know. Second, transition your login accounts over to regenerator passwords. Because at the beginning, you already have passwords set up for your various websites. What you will need to do is login to each of your sites using your existing passwords and then change the password for each site over to the unique ones that are being generated by our password regenerator. Once you reset the passwords to regenerator type ones, then the following four steps is all you need to do each time you login somewhere. Steps to Login to WebsitesStep 1 - Enter your master password It will be the same master password that you initially picked. TODO - I do need to explain how to handle "shared" accounts. Let's not worry about those for now.Step 2 - Enter the site identifier Most of the time it makes sense to use the domain name of the site you want to login to (except with the .com part stripped off). Like "facebook", "yahoo", "chase", "ebay", "amazon" etc... Whatever you use as the site identifier has to be reused for that particular site. So if you used "facebook" then you must always reuse "facebook" to get the right password for facebook. But maybe you want to use just "fb". Which would speed things up for you. Well, as long as you use "fb" each time, then the regenerated password will work with facebook. But until you get used to it, I recommend just using "facebook". Step 3 - Regenerate the Password Press the "Get Password" button to regenerate the password for the site that you are logging in to. Then copy it to the clipboard by pressing the "Copy Password" button. You will have to be quick to press the "Copy Password" button because the webpage automatically clears the password off of the page 20 seconds after it was regenerated. Step 4 - Paste the Password into the Website To login to your chosen website, use your login user ID as usual and then paste the password into the website password field. Bingo! You're logged in. Annual Password ChangesEach year, we change the password generator algorithm so that it's easier for you to keep all of your passwords different each year. So you need to roll over your account passwords each year. When the new year rolls over, you will need to start to roll over your logins to use the new passwords. To do this, you need to use the previous year's regenerator to get the existing password to login to each website. Then, go to the "change password" page of the website. Use that (existing) password and then, use the current regenerator page to obtain the new password to perform the password change. You will be able to get to the previous year's password regenerator page by picking it from the "Previous" menu. We keep a notice up on the current page showing that the new page (with its new password algorithm) is in effect. That notice stays there throughout January and February. So that gives you two months (plenty of time) to roll over all of your logins to new passwords. Even after that, you can still keep going back to the previous year's page if you're a bit slow to roll over all of your account passwords.For example: when rolling over from the current year 2025 into 2026, select the "Version 2025" password regenerator from the "Previous" menu to obtain the existing 2025 password then use the current password regenerator to obtain the new (2026) password. And do the same thing to change the password for each site that you login to. This is something you will be doing in January/February (because we change the regenerator algorithm every January 1st). Once you change the password for most of your commonly used sites you will use the current password regenerator until next year rolls over and then you will repeat the process again in 2027 and so on, each year. |
|
More Questions? |
|
Does the password regenerator store passwords? | No password information is stored at all. All of the password calculation is done within your browser on your computer. Nothing that you type into the regenerator web page goes anywhere onto the Internet. Your master key and site keys never leave your computer. They stay right where your computer is. All of the calculations are done within your browser on your computer. And your browser does not store or save the master password or identifiers at all. |
How does the password regenerator work? | The password regenerator generates (and regenerates) passwords that are unique for each web site that you use. When you initially set up your account on a site, you will use the password generator to set up the initial password. And each time you visit the site, you will use the password regenerator to recreate the same password (by typing in the master key and the specific site key). Each time you generate the password, you will copy and paste that password into the web site password field. |
Can you give me a longer explanation? | This password regenerator is an easy way to use your own special 'master key' and special 'site key' to produce many different complex (and long) passwords. Each password is a special unique value that is calculated using a combination of the master key and the site key and the combination is then 'hashed'. The hashing produces complex, unique and long passwords. This means that you need to remember three things. First, you must remember your unique master key. Second, you must remember each unique site key which identifies the login site. Third, you must also remember your login ID for each site. This page will regenerate the complex and long password which you will copy and paste into the site password and then login. Most sites use your email address as the user id. So that part is easy. Note that this is not a password vault. Password vaults actually store your passwords. If your password vault gets hacked, you're in big trouble. This password regenerator does not store anything at all. It simply recalculates your complex passwords using your master key and site key identifiers. |
What is the Master Key? | The master key is your secret. You use the same master key on each visit here. Never write down or store this password anywhere. It is your secret key password for passwords! |
What is the Site Key? | The site key is some unique text that applies to the specific site or purpose for the required password. It might be 'facebook' or 'cisco.com' or 'check account'. You can use any site key that you choose (for each site) but you must use the same site key for each specific site each time that you return to the password regenerator. That means, you need to create your own mental system for remembering site keys. Most of the time, you can use the domain name of each site. You can also drop the .com like 'facebook' or 'yahoo' or 'chase'. Our recommendation is to use the domain name but just drop the .com (the TLDR) so that "facebook.com" becomes simply "facebook". It is safe to write down a list of these site keys and keep them available for yourself. But it is better to come up with a system to remember them without writing them down or storing them anywhere. Whatever you do, don't write down actual passwords! |
Don't write down logins and passwords! | Incredibly foolish as this is, you can actually buy a log book for keeping a record of your web site logins and passwords. HERE is an example. This is a really, really bad idea. So don't do that! We know our tool takes a bit of getting used to and it isn't perfect but putting all of your logins and passwords into a book is a truly terrible idea. Please do not do that! |
![]() Copyright © 2025 Wantegrity, Inc. All rights reserved. |