[jasypt-users] Creating encryption password

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hello,

When using
BasicTextEncryptor textEncryptor = new BasicTextEncryptor();
textEncryptor.setPassword(myEncryptionPassword);

or

StrongTextEncryptor textEncryptor = new StrongTextEncryptor();
textEncryptor.setPassword(myEncryptionPassword);

what is the best practice for creating myEncryptionPassword? Should I just
use my mother's maiden name? A passphrase (Mary Had a Little Lamb)? Or
should I use some utility to generate a random string of characters of a
certain length?

Also, what's the comparative computational cost between Basic and Strong? I
suppose I could figure that out, but how about the comparative strength?
When would it be prudent to use Strong over Basic?

Thanks!

-- 
Daryl Stultz
_____________________________________
6 Degrees Software and Consulting, Inc.
http://www.6degrees.com
http://www.opentempo.com
mailto:dar...@op...