{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,2,23]],"date-time":"2025-02-23T05:15:55Z","timestamp":1740287755718,"version":"3.37.3"},"publisher-location":"Berlin, Heidelberg","reference-count":31,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642145766"},{"type":"electronic","value":"9783642145773"}],"license":[{"start":{"date-parts":[[2010,1,1]],"date-time":"2010-01-01T00:00:00Z","timestamp":1262304000000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2010]]},"DOI":"10.1007\/978-3-642-14577-3_10","type":"book-chapter","created":{"date-parts":[[2010,7,16]],"date-time":"2010-07-16T08:11:34Z","timestamp":1279267894000},"page":"98-113","source":"Crossref","is-referenced-by-count":27,"title":["What\u2019s in a Name?"],"prefix":"10.1007","author":[{"given":"Joseph","family":"Bonneau","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mike","family":"Just","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Greg","family":"Matthews","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"10_CR1","unstructured":"Ballard, L., Kamara, S., Reiter, M.K.: The Practical Subtleties of Biometric Key Generation. In: SS 2008: Proceedings of the 17th Conference on Security, Berkeley, CA, USA, pp. 61\u201374. USENIX Association (2008)"},{"key":"10_CR2","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","first-page":"111","DOI":"10.1007\/11427896_8","volume-title":"Human Interactive Proofs","author":"J. Bentley","year":"2005","unstructured":"Bentley, J., Mallows, C.: How Much Assurance Does a PIN Provide? In: Baird, H.S., Lopresti, D.P. (eds.) HIP 2005. LNCS, vol.\u00a03517, pp. 111\u2013126. Springer, Heidelberg (2005)"},{"key":"10_CR3","unstructured":"Boztas, S.: Entropies, Guessing, and Cryptography. Technical Report\u00a06, Department of Mathematics, Royal Melbourne Institute of Technology (1999)"},{"key":"10_CR4","unstructured":"Cachin, C.: Entropy measures and unconditional security in cryptography. PhD thesis, ETH Z\u00fcrich (1997)"},{"key":"10_CR5","doi-asserted-by":"crossref","unstructured":"Chiasson, S., Forget, A., Biddle, R., van Oorschot, P.C.: Influencing Users Towards Better Passwords: Persuasive Cued Click-Points. In: BCS-HCI 2008: Proceedings of the 22nd British HCI Group Annual Conference on HCI 2008, Swinton, UK, UK, pp. 121\u2013130. British Computer Society (2008)","DOI":"10.14236\/ewic\/HCI2008.12"},{"key":"10_CR6","unstructured":"Davis, D., Monrose, F., Reiter, M.K.: On User Choice in Graphical Password Schemes. In: SSYM 2004: Proceedings of the 13th Conference on USENIX Security Symposium, Berkeley, CA, USA, p. 11. USENIX Association (2004)"},{"key":"10_CR7","doi-asserted-by":"crossref","unstructured":"Dragomir, S.S., Boztas, S.: Some estimates of the average number of guesses to determine a random variable. In: Proceedings of the 1997 IEEE International Symposium on Information Theory, p. 159 (1997)","DOI":"10.1109\/ISIT.1997.613074"},{"issue":"4","key":"10_CR8","doi-asserted-by":"publisher","first-page":"311","DOI":"10.1016\/S0167-739X(99)00055-2","volume":"16","author":"C. Ellison","year":"2000","unstructured":"Ellison, C., Hall, C., Milbert, R., Schneier, B.: Protecting Secret Keys with Personal Entropy. Future Gener. Comput. Syst.\u00a016(4), 311\u2013318 (2000)","journal-title":"Future Gener. Comput. Syst."},{"key":"10_CR9","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/1408664.1408666","volume-title":"SOUPS 2008: Proceedings of the 4th Symposium on Usable Privacy and Security","author":"A. Forget","year":"2008","unstructured":"Forget, A., Chiasson, S., van Oorschot, P.C., Biddle, R.: Improving Text Passwords Through Persuasion. In: SOUPS 2008: Proceedings of the 4th Symposium on Usable Privacy and Security, pp. 1\u201312. ACM, New York (2008)"},{"key":"10_CR10","doi-asserted-by":"crossref","unstructured":"Fox, W.R., Lasker, G.W.: The Distribution of Surname Frequencies. International Statistical Review, 81\u201387 (1983)","DOI":"10.2307\/1402733"},{"key":"10_CR11","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/501983.501985","volume-title":"CCS 2001: Proceedings of the 8th ACM Conference on Computer and Communications Security","author":"N. Frykholm","year":"2001","unstructured":"Frykholm, N., Juels, A.: Error-tolerant password recovery. In: CCS 2001: Proceedings of the 8th ACM Conference on Computer and Communications Security, pp. 1\u20139. ACM, New York (2001)"},{"key":"10_CR12","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","first-page":"91","DOI":"10.1007\/11496137_7","volume-title":"Applied Cryptography and Network Security","author":"V. Griffith","year":"2005","unstructured":"Griffith, V., Jakobsson, M.: Messin\u2019 with Texas: Deriving Mother\u2019s Maiden Names Using Public Records. In: Ioannidis, J., Keromytis, A.D., Yung, M. (eds.) ACNS 2005. LNCS, vol.\u00a03531, pp. 91\u2013103. Springer, Heidelberg (2005)"},{"issue":"3","key":"10_CR13","doi-asserted-by":"publisher","first-page":"335","DOI":"10.1016\/0306-4379(91)90005-T","volume":"16","author":"W.J. Haga","year":"1991","unstructured":"Haga, W.J., Zviran, M.: Question-and-answer passwords: an empirical evaluation. Inf. Syst.\u00a016(3), 335\u2013343 (1991)","journal-title":"Inf. Syst."},{"key":"10_CR14","doi-asserted-by":"publisher","first-page":"61","DOI":"10.1145\/1456424.1456435","volume-title":"DIM 2008: Proceedings of the 4th ACM Workshop on Digital Identity Management","author":"M. Jakobsson","year":"2008","unstructured":"Jakobsson, M., Yang, L., Wetzel, S.: Quantifying the Security of Preference-based Authentication. In: DIM 2008: Proceedings of the 4th ACM Workshop on Digital Identity Management, pp. 61\u201370. ACM, New York (2008)"},{"key":"10_CR15","volume-title":"SOUPS, ACM International Conference Proceeding Series","author":"M. Just","year":"2009","unstructured":"Just, M., Aspinall, D.: Personal choice and challenge questions: A security and usability assessment. In: Cranor, L. (ed.) SOUPS, ACM International Conference Proceeding Series. ACM, New York (2009)"},{"key":"10_CR16","unstructured":"Klein, D.: \u201cFoiling the Cracker\u201d: A Survey of, and Improvements to, Password Security. In: Proceedings of the 2nd USENIX Security Workshop, pp. 5\u201314 (1990)"},{"key":"10_CR17","doi-asserted-by":"publisher","first-page":"67","DOI":"10.1145\/1143120.1143129","volume-title":"SOUPS 2006: Proceedings of the Second Symposium on Usable Privacy and Security","author":"C. Kuo","year":"2006","unstructured":"Kuo, C., Romanosky, S., Cranor, L.F.: Human Selection of Mnemonic Phrase-based Passwords. In: SOUPS 2006: Proceedings of the Second Symposium on Usable Privacy and Security, pp. 67\u201378. ACM, New York (2006)"},{"key":"10_CR18","doi-asserted-by":"crossref","unstructured":"Lindamood, J., Kantarcioglu, M.: Inferring Private Information Using Social Network Data. Technical Report UTDCS-21-08, University of Texas at Dallas Computer Science Department (July 2008)","DOI":"10.1145\/1526709.1526899"},{"key":"10_CR19","doi-asserted-by":"crossref","unstructured":"Malone, D., Sullivan, W.G.: Guesswork and Entropy. In: Proceedings of the 2004 IEEE International Symposium on Information Theory, vol.\u00a050 (2004)","DOI":"10.1109\/TIT.2004.824921"},{"key":"10_CR20","unstructured":"Massey, J.L.: Guessing and Entropy. In: Proceedings of the 1994 IEEE International Symposium on Information Theory, p. 204 (1994)"},{"key":"10_CR21","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","first-page":"54","DOI":"10.1007\/978-3-540-27809-2_6","volume-title":"Financial Cryptography","author":"L. O\u2019Gorman","year":"2004","unstructured":"O\u2019Gorman, L., Bagga, A., Bentley, J.L.: Call Center Customer Verification by Query-Directed Passwords. In: Juels, A. (ed.) FC 2004. LNCS, vol.\u00a03110, pp. 54\u201367. Springer, Heidelberg (2004)"},{"issue":"4","key":"10_CR22","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/1284680.1284685","volume":"10","author":"P.C. Oorschot van","year":"2008","unstructured":"van Oorschot, P.C., Thorpe, J.: On Predictive Models and User-Drawn Graphical Passwords. ACM Trans. Inf. Syst. Secur.\u00a010(4), 1\u201333 (2008)","journal-title":"ACM Trans. Inf. Syst. Secur."},{"key":"10_CR23","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","first-page":"67","DOI":"10.1007\/3-540-44495-5_7","volume-title":"Progress in Cryptology - INDOCRYPT 2000","author":"J.O. Pliam","year":"2000","unstructured":"Pliam, J.O.: On the Incomparability of Entropy and Marginal Guesswork in Brute-Force Attacks. In: Roy, B., Okamoto, E. (eds.) INDOCRYPT 2000. LNCS, vol.\u00a01977, pp. 67\u201379. Springer, Heidelberg (2000)"},{"issue":"7","key":"10_CR24","doi-asserted-by":"publisher","first-page":"645","DOI":"10.1016\/S0167-4048(00)07023-1","volume":"19","author":"R. Pond","year":"2000","unstructured":"Pond, R., Podd, J., Bunnell, J., Henderson, R.: Word Association Computer Passwords: The Effect of Formulation Techniques on Recall and Guessing Rates. Computers & Security\u00a019(7), 645\u2013656 (2000)","journal-title":"Computers & Security"},{"key":"10_CR25","first-page":"13","volume-title":"SOUPS, ACM International Conference Proceeding Series","author":"A. Rabkin","year":"2008","unstructured":"Rabkin, A.: Personal knowledge questions for fallback authentication: Security questions in the era of Facebook. In: Cranor, L.F. (ed.) SOUPS, ACM International Conference Proceeding Series, pp. 13\u201323. ACM, New York (2008)"},{"key":"10_CR26","volume-title":"IEEE Security and Privacy","author":"S. Schechter","year":"2009","unstructured":"Schechter, S., Brush, A.J.B., Egelman, S.: It\u2019s no secret: Measuring the security and reliability of authentication via \u2018secret\u2019 questions. In: IEEE Security and Privacy. IEEE, Los Alamitos (2009)"},{"key":"10_CR27","unstructured":"Schneier, B.: Real-world passwords (December 2006)"},{"key":"10_CR28","unstructured":"Spafford, E.: Observations on Reusable Password Choices. In: Proceedings of the 3rd USENIX Security Workshop (1992)"},{"key":"10_CR29","unstructured":"Thorpe, J., van Oorschot, P.C.: Human-Seeded Attacks and Exploiting Hot-Spots in Graphical Passwords. In: SS 2007: Proceedings of 16th USENIX Security Symposium, Berkeley, CA, USA. USENIX Association (2007)"},{"key":"10_CR30","first-page":"193","volume-title":"CHI","author":"M. Toomim","year":"2008","unstructured":"Toomim, M., Zhang, X., Fogarty, J., Landay, J.A.: Access Control by Testing for Shared Knowledge. In: Czerwinski, M., Lund, A.M., Tan, D.S. (eds.) CHI, pp. 193\u2013196. ACM, New York (2008)"},{"issue":"5","key":"10_CR31","doi-asserted-by":"publisher","first-page":"25","DOI":"10.1109\/MSP.2004.81","volume":"2","author":"J. Yan","year":"2004","unstructured":"Yan, J., Blackwell, A., Anderson, R., Grant, A.: Password Memorability and Security: Empirical Results. IEEE Security and Privacy Magazine\u00a02(5), 25 (2004)","journal-title":"IEEE Security and Privacy Magazine"}],"container-title":["Lecture Notes in Computer Science","Financial Cryptography and Data Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-14577-3_10","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,2,22]],"date-time":"2025-02-22T23:49:18Z","timestamp":1740268158000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-14577-3_10"}},"subtitle":["Evaluating Statistical Attacks on Personal Knowledge Questions"],"short-title":[],"issued":{"date-parts":[[2010]]},"ISBN":["9783642145766","9783642145773"],"references-count":31,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-14577-3_10","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2010]]}}}