> How long a passphrase is recommended for generating a 32 byte (AES) key? Depends on how you generate it and how much entropy you want. For my high-security passphrases I grab 16 bytes (128 bits) from /dev/urandom and base64-encode it. Works great for me and provides an excellent security margin.