RoboForm calculates individual password strength using zxcvbn, a powerful open source password strength estimator. Most password strength checkers merely count lowercase letters, uppercase letters, digits, and symbols (LUDS). They do not take into account dictionary entries, common names, as well as known common passwords and their variants. This often causes them to incorrectly rate poor passwords like 'P@ssword1' as strong.
Our tool incorporates all of these known bad password patterns. This makes our strength ratings more reliable because they are reflective of how long it would take a good password cracker to guess the password, not just a LUDS score.
Use our Security Center feature to view the strength of your existing passwords and ensure duplications do not occur across various sites.
A compromised password is an individual password that has previously been seen in a documented data breach where hackers released the stolen data publicly or sold it on the dark web. To detect compromised passwords, RoboForm checks against a list maintained by Have I Been Pwned (HIBP), a service that collects passwords exposed in data breaches.