Frequently Asked Questions
Everything you need to know about how FrankPass keeps you secure.
🔐 What is the security architecture of FrankPass?
FrankPass uses 100% client-side cryptography. Advanced hashing algorithms (PBKDF2 and HMAC-SHA512 with 1,000,000 iterations) run locally in your browser to generate a deterministic output. Because there are no databases, vaults, or cloud syncing involved, there is nothing for hackers to breach. It is completely serverless.
🔑 What happens if I forget my Secret Key?
Because FrankPass is zero-knowledge and stateless, there is no "Forgot Password" or recovery feature. Your Secret Key is the mathematical foundation of your passwords. We recommend using a memorable passphrase or a deeply personal logic pattern. If you forget it, you will need to reset your passwords on every individual website.
📱 Will I get the same password if I switch devices?
Absolutely. FrankPass is deterministic. As long as you input the exact same Platform Name, Secret Key, and Variant Counter, the math will output the exact same password on any smartphone, tablet, PC, or Mac — entirely offline.
🌐 What if I type "facebook.com" instead of just "facebook"?
No problem! FrankPass has a built-in smart domain normalizer. Whether you type
facebook, facebook.com, www.facebook.com, or m.facebook.com — it automatically cleans up to the base name. You will always get the exact same password.
📡 Does FrankPass work completely offline?
Yes! Once the page is loaded, you can completely disconnect your internet. The cryptography runs natively inside your browser. For ultimate offline access, install FrankPass as a PWA (Progressive Web App) using the Install App option.
👤 Why should I leave the "Username" field blank?
Leaving it blank reduces human error. If you change your email on a website, your password field would produce a different result, locking you out. Leave it blank to keep the password tied to the platform and your secret key. Exception: If you have multiple accounts on the same platform (e.g., two Instagram profiles), use the Username field to generate distinct passwords for each.
🔄 How does the Variant counter feature work?
Think of the Variant as a password rotation tool. If a website forces you to change your password, or if you suspect your account was compromised, simply change the Variant from 1 to 2. This generates a completely new, secure password for that platform — without changing your Secret Key.
⚠️ What if a website rejects the generated password?
Some older websites restrict password length or symbols. If your password is rejected, lower the length slider or switch the Profile to Alphanumeric and generate again. Always use those same settings for that specific website in the future.
🔤 Why do FrankPass passwords look different from other generators?
For your sanity! FrankPass strategically removes visually ambiguous characters from its engine so you never misread a password when typing it manually. Removed characters include:
- Letters that look like numbers:
l,I,O - Numbers that look like letters:
0,1 - Similar-looking letter pairs:
C/c,S/s,V/v,W/w