{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,14]],"date-time":"2026-05-14T20:07:17Z","timestamp":1778789237940,"version":"3.51.4"},"publisher-location":"Cham","reference-count":25,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783319156170","type":"print"},{"value":"9783319156187","type":"electronic"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2015]]},"DOI":"10.1007\/978-3-319-15618-7_10","type":"book-chapter","created":{"date-parts":[[2015,2,27]],"date-time":"2015-02-27T01:10:31Z","timestamp":1424999431000},"page":"119-132","source":"Crossref","is-referenced-by-count":78,"title":["OMEN: Faster Password Guessing Using an Ordered Markov Enumerator"],"prefix":"10.1007","author":[{"given":"Markus","family":"D\u00fcrmuth","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Fabian","family":"Angelstorf","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Claude","family":"Castelluccia","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Daniele","family":"Perito","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Abdelberi","family":"Chaabane","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"issue":"3","key":"10_CR1","doi-asserted-by":"publisher","first-page":"233","DOI":"10.1016\/0167-4048(95)00003-Q","volume":"14","author":"M. Bishop","year":"1995","unstructured":"Bishop, M., Klein, D.V.: Improving system security via proactive password checking. Computers & Security\u00a014(3), 233\u2013249 (1995)","journal-title":"Computers & Security"},{"key":"10_CR2","doi-asserted-by":"crossref","unstructured":"Bonneau, J.: The science of guessing: analyzing an anonymized corpus of 70 million passwords. In: Proc. IEEE Symposium on Security and Privacy. IEEE (2012)","DOI":"10.1109\/SP.2012.49"},{"key":"10_CR3","doi-asserted-by":"crossref","unstructured":"Bonneau, J., Herley, C., van Oorschot, P.C., Stajano, F.: The quest to replace passwords: A framework for comparative evaluation of web authentication schemes. In: Proc. IEEE Symposium on Security and Privacy. IEEE (2012)","DOI":"10.1109\/SP.2012.44"},{"key":"10_CR4","doi-asserted-by":"crossref","unstructured":"Burr, W.E., Dodson, D.F., Polk, W.T.: Electronic authentication guideline: NIST special publication 800-63 (2006)","DOI":"10.6028\/NIST.SP.800-63v1.0.2"},{"key":"10_CR5","unstructured":"Castelluccia, C., D\u00fcrmuth, M., Perito, D.: Adaptive password-strength meters from Markov models. In: Proc. Network and Distributed Systems Security Symposium (NDSS). The Internet Society (2012)"},{"key":"10_CR6","first-page":"983","volume-title":"Proc. 29th conference on Information communications, INFOCOM 2010","author":"M. Dell\u2019Amico","year":"2010","unstructured":"Dell\u2019Amico, M., Michiardi, P., Roudier, Y.: Password strength: an empirical analysis. In: Proc. 29th conference on Information communications, INFOCOM 2010, pp. 983\u2013991. IEEE Press, Piscataway (2010)"},{"key":"10_CR7","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"124","DOI":"10.1007\/978-3-642-34638-5_11","volume-title":"Financial Cryptography and Data Security","author":"S. Egelman","year":"2012","unstructured":"Egelman, S., Bonneau, J., Chiasson, S., Dittrich, D., Schechter, S.: It\u2019s not stealing if you need it: A panel on the ethics of performing research using public data of illicit origin. In: Blyth, J., Dietrich, S., Camp, L.J. (eds.) FC 2012. LNCS, vol.\u00a07398, pp. 124\u2013132. Springer, Heidelberg (2012)"},{"key":"10_CR8","unstructured":"HashCat. OCL HashCat-Plus (2012), \n                    \n                      http:\/\/hashcat.net\/oclhashcat-plus\/"},{"key":"10_CR9","unstructured":"Kedem, G., Ishihara, Y.: Brute force attack on unix passwords with SIMD computer. In: Proc. 8th Conference on USENIX Security Symposium, SSYM 1999, vol.\u00a08. USENIX Association (1999)"},{"key":"10_CR10","doi-asserted-by":"crossref","unstructured":"Kelley, P.G., Komanduri, S., Mazurek, M.L., Shay, R., Vidas, T., Bauer, L., Christin, N., Cranor, L.F., Lopez, J.: Guess again (and again and again): Measuring password strength by simulating password-cracking algorithms. In: Proc. IEEE Symposium on Security and Privacy. IEEE (2012)","DOI":"10.21236\/ADA570747"},{"key":"10_CR11","unstructured":"Klein, D.V.: Foiling the cracker: A survey of, and improvements to, password security. In: Proc. USENIX UNIX Security Workshop (1990)"},{"key":"10_CR12","doi-asserted-by":"crossref","unstructured":"Komanduri, S., Shay, R., Kelley, P.G., Mazurek, M.L., Bauer, L., Christin, N., Cranor, L.F., Egelman, S.: Of passwords and people: Measuring the effect of password-composition policies. In: CHI 2011: Conference on Human Factors in Computing Systems (2011)","DOI":"10.1145\/1978942.1979321"},{"key":"10_CR13","unstructured":"Li, Z., Han, W., Xu, W.: A large-scale empirical analysis of chinese web passwords. In: Proc. 23rd USENIX Security Symposium, USENIX Security (August 2014)"},{"key":"10_CR14","doi-asserted-by":"crossref","unstructured":"Ma, J., Yang, W., Luo, M., Li, N.: A study of probabilistic password models. In: Proc. IEEE Symposium on Security and Privacy. IEEE Computer Society (2014)","DOI":"10.1109\/SP.2014.50"},{"issue":"11","key":"10_CR15","doi-asserted-by":"publisher","first-page":"594","DOI":"10.1145\/359168.359172","volume":"22","author":"R. Morris","year":"1979","unstructured":"Morris, R., Thompson, K.: Password security: a case history. ACM Communications\u00a022(11), 594\u2013597 (1979)","journal-title":"ACM Communications"},{"key":"10_CR16","doi-asserted-by":"crossref","unstructured":"Narayanan, A., Shmatikov, V.: Fast dictionary attacks on passwords using time-space tradeoff. In: Proc. 12th ACM conference on Computer and communications security (CCS), pp. 364\u2013372. ACM (2005)","DOI":"10.1145\/1102120.1102168"},{"key":"10_CR17","unstructured":"OpenWall John the Ripper (2012), \n                    \n                      http:\/\/www.openwall.com\/john"},{"key":"10_CR18","unstructured":"The password meter, \n                    \n                      http:\/\/www.passwordmeter.com\/"},{"key":"10_CR19","unstructured":"PCFG Password Cracker implementation Matt Weir (2012), \n                    \n                      https:\/\/sites.google.com\/site\/reusablesec\/Home\/password-cracking-tools\/probablistic_cracker"},{"key":"10_CR20","unstructured":"Provos, N., Mazi\u00e8res, D.: A future-adaptive password scheme. In: Proc. Annual Conference on USENIX Annual Technical Conference, ATEC 1999. USENIX Association (1999)"},{"key":"10_CR21","unstructured":"Schechter, S., Herley, C., Mitzenmacher, M.: Popularity is everything: a new approach to protecting passwords from statistical-guessing attacks. In: Proc. 5th USENIX Conference on Hot Topics in Security, pp. 1\u20138. USENIX Association (2010)"},{"key":"10_CR22","doi-asserted-by":"crossref","unstructured":"Spafford, E.H.: Observing reusable password choices. In: Proc. 3rd Security Symposium, pp. 299\u2013312. USENIX (1992)","DOI":"10.1016\/0167-4048(92)90207-8"},{"key":"10_CR23","doi-asserted-by":"crossref","unstructured":"Weir, M., Aggarwal, S., Collins, M., Stern, H.: Testing metrics for password creation policies by attacking large sets of revealed passwords. In: Proc. 17th ACM Conference on Computer and Communications Security (CCS 2010), pp. 162\u2013175. ACM (2010)","DOI":"10.1145\/1866307.1866327"},{"key":"10_CR24","doi-asserted-by":"crossref","unstructured":"Weir, M., Aggarwal, S., de Medeiros, B., Glodek, B.: Password cracking using probabilistic context-free grammars. In: Proc. IEEE Symposium on Security and Privacy, pp. 391\u2013405. IEEE Computer Society (2009)","DOI":"10.1109\/SP.2009.8"},{"key":"10_CR25","unstructured":"Word list Collection (2012), \n                    \n                      http:\/\/www.outpost9.com\/files\/WordLists.html"}],"container-title":["Lecture Notes in Computer Science","Engineering Secure Software and Systems"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-15618-7_10","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,29]],"date-time":"2019-05-29T11:27:00Z","timestamp":1559129220000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-15618-7_10"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015]]},"ISBN":["9783319156170","9783319156187"],"references-count":25,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-15618-7_10","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2015]]}}}