A passphrase is a password consisting of multiple words or an entire sentence. Thanks to their length, passphrases offer significantly more entropy than typical 8-12 character passwords while being easier to remember. For example, “correct-horse-battery-staple” has high brute-force resistance. Modern guidance (NIST SP 800-63B) prioritizes password length over complexity rules like special characters and uppercase letters. In your password policy, you can recommend passphrases as a preferred alternative to short complex passwords. Combined with a password manager, passphrases provide a good balance between security and usability.