{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,14]],"date-time":"2026-03-14T18:24:37Z","timestamp":1773512677393,"version":"3.50.1"},"publisher-location":"Cham","reference-count":30,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783031649479","type":"print"},{"value":"9783031649486","type":"electronic"}],"license":[{"start":{"date-parts":[[2024,10,13]],"date-time":"2024-10-13T00:00:00Z","timestamp":1728777600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,10,13]],"date-time":"2024-10-13T00:00:00Z","timestamp":1728777600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025]]},"DOI":"10.1007\/978-3-031-64948-6_26","type":"book-chapter","created":{"date-parts":[[2024,10,12]],"date-time":"2024-10-12T09:02:09Z","timestamp":1728723729000},"page":"514-532","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["Password Cracking by\u00a0Exploiting User Group Information"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-9580-8149","authenticated-orcid":false,"given":"Beibei","family":"Zhou","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3820-8128","authenticated-orcid":false,"given":"Daojing","family":"He","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1047-7967","authenticated-orcid":false,"given":"Sencun","family":"Zhu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Shanshan","family":"Zhu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8524-229X","authenticated-orcid":false,"given":"Sammy","family":"Chan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Xiao","family":"Yang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2024,10,13]]},"reference":[{"key":"26_CR1","unstructured":"John\u2019s markov generator. https:\/\/openwall.info\/wiki\/john\/markov"},{"issue":"2","key":"26_CR2","doi-asserted-by":"publisher","first-page":"101","DOI":"10.1007\/s11416-021-00397-9","volume":"18","author":"Z Alebouyeh","year":"2022","unstructured":"Alebouyeh, Z., Jalaly Bidgoly, A.: Zipf\u2019s law analysis on the leaked Iranian users\u2019 passwords. J. Comput. Virol. Hacking Tech 18(2), 101\u2013116 (2022). https:\/\/doi.org\/10.1007\/s11416-021-00397-9","journal-title":"J. Comput. Virol. Hacking Tech"},{"issue":"19","key":"26_CR3","doi-asserted-by":"publisher","first-page":"79","DOI":"10.1016\/j.jisa.2018.12.008","volume":"45","author":"R Alomari","year":"2019","unstructured":"Alomari, R., Thorpe, J.: On password behaviors and attitudes in different populations. Inf. Secur. Appl. 45(19), 79\u201389 (2019). https:\/\/doi.org\/10.1016\/j.jisa.2018.12.008","journal-title":"Inf. Secur. Appl."},{"key":"26_CR4","doi-asserted-by":"crossref","unstructured":"Bonneau, J.: The science of guessing: analyzing an anonymized corpus of 70 million passwords. In: Proceedings of S &P 2012, pp. 538\u2013552 (2012)","DOI":"10.1109\/SP.2012.49"},{"key":"26_CR5","unstructured":"Bonneau, J., Xu, R.: Of contrasenas, sysmawt, and m\u0131ma: character encoding issues for web passwords (2012). http:\/\/citeseerx.ist.psu.edu\/viewdoc\/download?doi=10.1.1.294.8406&rep=rep1 &type=pdf"},{"issue":"2","key":"26_CR6","doi-asserted-by":"publisher","first-page":"163","DOI":"10.1177\/136346159803500201","volume":"35","author":"SS Canetto","year":"1998","unstructured":"Canetto, S.S., Lester, D.: Gender, culture, and suicidal behavior. Trans. Psychi. 35(2), 163\u2013190 (1998)","journal-title":"Trans. Psychi."},{"key":"26_CR7","doi-asserted-by":"crossref","unstructured":"Dell\u2019Amico, M., Filippone, M.: Monte carlo strength evaluation: fast and reliable password checking. In: Proceedings of ACM SIGSA 2015, pp. 158\u2013169 (2015)","DOI":"10.1145\/2810103.2813631"},{"key":"26_CR8","doi-asserted-by":"crossref","unstructured":"Dong, Q., Wang, D., Shen, Y., Jia, C.: PII-PSM: a new targeted password strength meter using personally identifiable information. In: Proceedings of EAI SecureComm 2022, pp. 648\u2013669 (2023)","DOI":"10.1007\/978-3-031-25538-0_34"},{"issue":"1","key":"26_CR9","doi-asserted-by":"publisher","first-page":"101801","DOI":"10.1016\/j.cose.2020.101801","volume":"94","author":"Y Guo","year":"2020","unstructured":"Guo, Y., Zhang, Z., Guo, Y., Guo, X.: Nudging personalized password policies by understanding users\u2019 personality. Comput. Secur. 94(1), 101801 (2020). https:\/\/doi.org\/10.1016\/j.cose.2020.101801","journal-title":"Comput. Secur."},{"issue":"10","key":"26_CR10","doi-asserted-by":"publisher","first-page":"451","DOI":"10.1109\/TIFS.2020.3003696","volume":"16","author":"W Han","year":"2021","unstructured":"Han, W., Xu, M., Zhang, J., Wang, C., Zhang, K., Wang, X.S.: TransPCFG: transferring the grammars from short passwords to guess long passwords effectively. IEEE Trans. Inf. Forensics Secur. 16(10), 451\u2013465 (2021)","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"issue":"1","key":"26_CR11","doi-asserted-by":"publisher","first-page":"311","DOI":"10.1109\/MNET.011.2000354","volume":"35","author":"D He","year":"2021","unstructured":"He, D., et al.: Group-based password characteristics analysis. IEEE Netw. 35(1), 311\u2013317 (2021)","journal-title":"IEEE Netw."},{"key":"26_CR12","doi-asserted-by":"crossref","unstructured":"Houshmand, S., Aggarwal, S.: Building better passwords using probabilistic techniques. In: Proceedings of ACSAC 2012, pp. 109\u2013118 (2012)","DOI":"10.1145\/2420950.2420966"},{"key":"26_CR13","doi-asserted-by":"crossref","unstructured":"Hranick, R., Zobal, L., Rysav, O., Kolar, D., Mikus, D.: Distributed PCFG password cracking. In: Proceedings of ESORICS 2020, pp. 701\u2013719 (2020)","DOI":"10.1007\/978-3-030-58951-6_34"},{"issue":"1","key":"26_CR14","doi-asserted-by":"publisher","first-page":"2130","DOI":"10.1109\/TIFS.2021.3050066","volume":"16","author":"W Li","year":"2021","unstructured":"Li, W., Zeng, J.: Leet usage and its effect on password security. IEEE Trans. Inf. Forensics Secur. 16(1), 2130\u20132143 (2021)","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"26_CR15","doi-asserted-by":"crossref","unstructured":"Li, Y., Wang, H., Sun, K.: A study of personal information in human-chosen passwords and its security implications. In: Proceedings of INFOCOM 2016, pp. 1\u20139 (2016)","DOI":"10.1109\/INFOCOM.2016.7524583"},{"key":"26_CR16","unstructured":"Li, Z., Han, W., Xu, W.: A large-scale empirical analysis of Chinese web passwords. In: Proceedings of USENIX SEC 2014, pp. 559\u2013574 (2014)"},{"key":"26_CR17","doi-asserted-by":"crossref","unstructured":"Liu, Y., et al.: GENPass: a general deep learning model for password guessing with PCFG rules and adversarial generation. In: Proceedings of ICC 2018, pp.\u00a01\u20136 (2018)","DOI":"10.1109\/ICC.2018.8422243"},{"key":"26_CR18","doi-asserted-by":"crossref","unstructured":"Mazurek, M.L., et al.: Measuring password guessability for an entire university. In: Proceedings of ACM SIGSAC 2013, pp. 173\u2013186 (2013)","DOI":"10.1145\/2508859.2516726"},{"key":"26_CR19","unstructured":"Melicher, W., Ur, B., Komanduri, S., Bauer, L., Christin, N., Cranor, L.F.: Fast, lean, and accurate:modeling password guessability using neural networks. In: Proceedings of USENIX SEC 2016, pp. 175\u2013191 (2016)"},{"key":"26_CR20","doi-asserted-by":"crossref","unstructured":"Sully De Luque, M.F., Sommer, S.M.: The impact of culture on feedback-seeking behavior: an integrated model and propositions. Pers. Soc. 25(4), 829\u2013849 (2000)","DOI":"10.5465\/amr.2000.3707736"},{"key":"26_CR21","doi-asserted-by":"crossref","unstructured":"Veras, R., Collins, C., Thorpe, J.: On semantic patterns of passwords and their security impact. In: Proceedings of NDSS 2014, pp. 1\u201316 (2014)","DOI":"10.14722\/ndss.2014.23103"},{"issue":"3","key":"26_CR22","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/3448608","volume":"24","author":"R Veras","year":"2021","unstructured":"Veras, R., Collins, C., Thorpe, J.: A large-scale analysis of the semantic password model and linguistic patterns in passwords. Trans. Priv. Secur. ACM 24(3), 1\u201321 (2021)","journal-title":"Trans. Priv. Secur. ACM"},{"issue":"11","key":"26_CR23","doi-asserted-by":"publisher","first-page":"2776","DOI":"10.1109\/TIFS.2017.2721359","volume":"12","author":"D Wang","year":"2017","unstructured":"Wang, D., Cheng, H., Wang, P., Huang, X., Jian, G.: Zipf\u2019s law in passwords. IEEE Trans. Inf. Forensics Secur. 12(11), 2776\u20132791 (2017)","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"26_CR24","doi-asserted-by":"crossref","unstructured":"Wang, D., He, D., Cheng, H., Wang, P.: FuzzyPSM: a new password strength meter using fuzzy probabilistic context-free grammars. In: Proceedings of IEEE\/IFIP DSN 2016, pp. 595\u2013606 (2016)","DOI":"10.1109\/DSN.2016.60"},{"key":"26_CR25","doi-asserted-by":"crossref","unstructured":"Wang, D., Wang, P.: The emperor\u2019s new password creation policies. In: Proceedings of ESORICS 2015, pp. 456\u2013477 (2015)","DOI":"10.1007\/978-3-319-24177-7_23"},{"key":"26_CR26","unstructured":"Wang, D., Wang, P., He, D., Tian, Y.: Birthday, name and bifacial-security: understanding passwords of Chinese web users. In: Proceedings of USENIX SEC 2019, pp. 1537\u20131555 (2019)"},{"key":"26_CR27","doi-asserted-by":"crossref","unstructured":"Wang, D., Zhang, Z., Wang, P., Yan, J., Huang, X.: Targeted online password guessing: an underestimated threat. In: Proceedings of ACM CCS 2016, pp. 1242\u20131254 (2016)","DOI":"10.1145\/2976749.2978339"},{"key":"26_CR28","doi-asserted-by":"crossref","unstructured":"Weir, M., Aggarwal, S., Medeiros, B.d., Glodek, B.: Password cracking using probabilistic context-free grammars. In: Proceedings of IEEE S &P 2009, pp. 391\u2013405 (2009)","DOI":"10.1109\/SP.2009.8"},{"key":"26_CR29","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"350","DOI":"10.1007\/978-3-030-55304-3_18","volume-title":"Information Security and Privacy","author":"Z Xie","year":"2020","unstructured":"Xie, Z., Zhang, M., Yin, A., Li, Z.: A new targeted password guessing model. In: Liu, J.K., Cui, H. (eds.) ACISP 2020. LNCS, vol. 12248, pp. 350\u2013368. Springer, Cham (2020). https:\/\/doi.org\/10.1007\/978-3-030-55304-3_18"},{"issue":"1","key":"26_CR30","doi-asserted-by":"publisher","first-page":"102587","DOI":"10.1016\/j.cose.2021.102587","volume":"114","author":"K Yang","year":"2022","unstructured":"Yang, K., Hu, X., Zhang, Q., Jianghong, W., Wenfen, L.: VAEPass: a lightweight passwords guessing model based on variational auto-encoder. Comput. Secur. 114(1), 102587 (2022). https:\/\/doi.org\/10.1016\/j.cose.2021.102587","journal-title":"Comput. Secur."}],"container-title":["Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering","Security and Privacy in Communication Networks"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-64948-6_26","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,10,12]],"date-time":"2024-10-12T09:10:15Z","timestamp":1728724215000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-64948-6_26"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,10,13]]},"ISBN":["9783031649479","9783031649486"],"references-count":30,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-64948-6_26","relation":{},"ISSN":["1867-8211","1867-822X"],"issn-type":[{"value":"1867-8211","type":"print"},{"value":"1867-822X","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024,10,13]]},"assertion":[{"value":"13 October 2024","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"SecureComm","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Security and Privacy in Communication Systems","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Hong Kong","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"China","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2023","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"19 October 2023","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"21 October 2023","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"19","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"securecomm2023","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/securecomm.eai-conferences.org\/2023\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Confy +","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"180","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"50","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"28% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"2","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}