{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,7,16]],"date-time":"2025-07-16T12:52:42Z","timestamp":1752670362613,"version":"3.37.3"},"reference-count":40,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"12","license":[{"start":{"date-parts":[[2017,12,1]],"date-time":"2017-12-01T00:00:00Z","timestamp":1512086400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/EU.html"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Trans.Inform.Forensic Secur."],"published-print":{"date-parts":[[2017,12]]},"DOI":"10.1109\/tifs.2017.2730359","type":"journal-article","created":{"date-parts":[[2017,7,21]],"date-time":"2017-07-21T18:25:53Z","timestamp":1500661553000},"page":"2845-2860","source":"Crossref","is-referenced-by-count":12,"title":["A New Multimodal Approach for Password Strength Estimation\u2014Part II: Experimental Evaluation"],"prefix":"10.1109","volume":"12","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-2009-0256","authenticated-orcid":false,"given":"Javier","family":"Galbally","sequence":"first","affiliation":[]},{"given":"Iwen","family":"Coisel","sequence":"additional","affiliation":[]},{"given":"Ignacio","family":"Sanchez","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"key":"ref39","first-page":"37","article-title":"Password exhaustion: Predicting the end of password usefulness","author":"clair","year":"2006","journal-title":"Proc ICISS vol LNCS-4332"},{"journal-title":"NIST SP 800-63-3 Public Preview","year":"2016","key":"ref38"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1080\/10658980601051375"},{"journal-title":"Dridex Financial Trojan Aggressively Spread in Millions of Spam Emails Each Day","year":"2016","key":"ref32"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1080\/01449290903121386"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2012.49"},{"key":"ref37","first-page":"123","article-title":"‘I added ’!’ at the end to make it secure’: Observing password creation in the lab","author":"ur","year":"2015","journal-title":"Proc USENIX SOUPS"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1145\/2891411"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1080\/0144929X.2010.492876"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1145\/1978942.1979321"},{"journal-title":"The Top 500 Worst Passwords of All Time","year":"2008","key":"ref10"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2012.44"},{"journal-title":"370 Passwords You Shouldn’t (and Can’t) Use on Twitter","year":"2009","key":"ref11"},{"journal-title":"The rockyou 32 million password list top 100","year":"2009","key":"ref12"},{"key":"ref13","first-page":"35","article-title":"An administrator’s guide to internet password research","author":"florencio","year":"2014","journal-title":"Proc USENIX LISA"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1145\/2891411"},{"journal-title":"KoreLogic Public Passwords Dataset","year":"2016","key":"ref15"},{"journal-title":"Cracking Story—How I Cracked Over 122 Million SHA1 and MD5 Hashed Passwords","year":"2016","key":"ref16"},{"article-title":"NIST special publication 800-63-2: Electronic authentication guideline","year":"2012","author":"burr","key":"ref17"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1145\/2818000.2818018"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2014.23103"},{"key":"ref28","first-page":"157","article-title":"zxcvbn: Low-budget password strength estimation","author":"wheeler","year":"2016","journal-title":"Proc Usenix Secur Symp"},{"key":"ref4","article-title":"Adaptive password-strength meters from Markov models","author":"castelluccia","year":"2012","journal-title":"Proc NDSS"},{"journal-title":"KoreLogic Rule Set","year":"2016","key":"ref27"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1145\/1866307.1866327"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1145\/2739044"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1214\/aoms\/1177729694"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2014.23268"},{"key":"ref8","first-page":"65","article-title":"How does your password measure up? The effect of strength meters on password creation","author":"ur","year":"2012","journal-title":"Proc Usenix Secur Symp"},{"key":"ref7","first-page":"51","article-title":"Helping users create better passwords","volume":"37","author":"ur","year":"2012","journal-title":"Proc LOGIN"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1016\/S1361-3723(11)70123-3"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.14722\/usec.2017.23043"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2016.2636092"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2014.50"},{"key":"ref22","article-title":"Cracking 400,000 passwords or how to explain to your roommate why the power-bill is a little high","author":"weir","year":"2009","journal-title":"Proc DEFCON Conf"},{"key":"ref21","article-title":"Analysis of publicly leaked credentials and the long story of password (Re-) use","author":"jaeger","year":"2016","journal-title":"Proc Int Conf Passwords"},{"key":"ref24","article-title":"Introducing the PRINCE attack mode","author":"steube","year":"2014","journal-title":"Proc Int Conf Passwords (PASSWORDS)"},{"key":"ref23","first-page":"463","article-title":"Measuring real-world accuracies and biases in modeling password guessability","author":"ur","year":"2015","journal-title":"Proc Usenix Secur Symp"},{"journal-title":"CrackStation’s Password Cracking Dictionary","year":"2016","key":"ref26"},{"journal-title":"John-the-Ripper Open Source Password Cracker","year":"2016","key":"ref25"}],"container-title":["IEEE Transactions on Information Forensics and Security"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/10206\/8017695\/07987763.pdf?arnumber=7987763","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,1,12]],"date-time":"2022-01-12T16:26:30Z","timestamp":1642004790000},"score":1,"resource":{"primary":{"URL":"http:\/\/ieeexplore.ieee.org\/document\/7987763\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,12]]},"references-count":40,"journal-issue":{"issue":"12"},"URL":"https:\/\/doi.org\/10.1109\/tifs.2017.2730359","relation":{},"ISSN":["1556-6013","1556-6021"],"issn-type":[{"type":"print","value":"1556-6013"},{"type":"electronic","value":"1556-6021"}],"subject":[],"published":{"date-parts":[[2017,12]]}}}