>Yup, the field will need to be bigger. Not only is a passphrase easier to remember, it's more difficult to crack.
I would agree. But, in a passphrase, are users usually into always using letters only? Is this a context where you can enforce password rules?