What format should my API key be?

Hex and base64 are common formats. Hex is more readable; base64 is more compact. UUID v4 is useful when you need a standardized format.

How long should an API key be?

At minimum 128 bits (32 hex chars or 22 base64 chars). For high-security applications, use 256 bits or more.

Is key generation secure?

Yes, uses crypto.getRandomValues() — the same cryptographic source used by operating systems for key generation.

Yes, completely free with no account required.

API Key Generator

Generate secure, cryptographically random API keys in multiple formats.

Format

Length

3fc7439609aefa4d6fbd35c192ffab00

bb3764e8c11fc084630f824fd8f93d6e

7d4da0a82dc6253313e9bdeb329d2037

8ca55752d65a04d844848e8243364e55

054e387e383b22622842e2c672de70fb

API Key Generator creates cryptographically secure random keys using the Web Crypto API. Choose from hex, base64, alphanumeric, or UUID formats with lengths from 16 to 64 characters. All generation happens client-side.

Frequently Asked Questions

Are these keys cryptographically secure? +

Yes — all keys are generated using window.crypto.getRandomValues(), the browser's cryptographically secure random number generator, not Math.random().

Which format should I use? +

Hex is the most common for API keys. Base64 is shorter for the same entropy. Alphanumeric avoids special characters that need URL encoding. UUID format matches the standard v4 UUID shape.

Are keys sent to a server? +

No. Generation is entirely client-side. No keys are logged, stored, or transmitted.

Frequently Asked Questions

: Hex and base64 are the most common. Hex is easier to read and debug; base64 is more compact. UUID is useful when you need a standardized format.

API Key Generator

Frequently Asked Questions

Frequently Asked Questions

Related Tools