How secure are the generated keys?

Keys are built from raw bytes produced by the browser's crypto.getRandomValues CSPRNG. With 32 bytes you get 256 bits of entropy, far beyond what is brute-forceable.

Does the encoding change the security?

No. Hex, base62 and base64url only change how the same underlying random bytes are displayed. Base62 is rejection-sampled per character to avoid bias and preserve full entropy.

How many bytes of entropy should an API key have?

32 bytes (256 bits) is a strong, common choice and the basis for keys like Stripe's. 16 bytes (128 bits) is the practical minimum for secrets; this tool lets you go up to 64 bytes (512 bits).

What does the sk_live_ prefix mean?

A prefix is a human-readable label that identifies the key's type and environment, such as sk_live_ for a live secret key or pk_test_ for a test publishable key. It carries no entropy itself; it just makes keys easier to recognise and scan for in code.

Are the keys sent or logged anywhere?

No. Generation happens entirely in your browser. Keys are never transmitted or stored, so save them somewhere safe before leaving the page.

API Key Generator — Gera Tools

The API Key Generator creates cryptographically secure random keys and secret tokens for use in APIs, webhooks, services and config files. Whether you need a Stripe-style sk_live_ secret, a webhook signing key, or a generic access token, this tool produces high-entropy values that are safe to use in production — generated entirely in your browser.

How it works

The generator draws raw random bytes from the browser’s crypto.getRandomValues CSPRNG (the Web Crypto API), which is suitable for cryptographic secrets. You choose how many bytes of entropy to use (16 to 64) and how to encode them:

Hex — two characters per byte, using 0-9 and a-f.
Base62 — alphanumeric (0-9, A-Z, a-z), rejection-sampled per character so no bias is introduced and full entropy is preserved.
Base64url — URL-safe base64 (no +, / or padding), the most compact.

An optional prefix such as sk_live_ is prepended verbatim. The encoding changes only the appearance, never the underlying randomness.

Example

Generating a 32-byte key (256 bits of entropy) with the prefix sk_live_ and hex encoding produces something like:

sk_live_3f9a1c...d2b7 (64 hex characters after the prefix).

Entropy	Hex length	Base62 length (approx)	Strength
16 bytes	32 chars	~22 chars	128-bit
32 bytes	64 chars	~43 chars	256-bit
64 bytes	128 chars	~86 chars	512-bit

It is privacy-first: nothing is transmitted or logged. Copy and store your key securely — this tool keeps no record of it.