{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,13]],"date-time":"2026-04-13T17:37:18Z","timestamp":1776101838206,"version":"3.50.1"},"publisher-location":"New York, NY, USA","reference-count":40,"publisher":"ACM","license":[{"start":{"date-parts":[[2019,5,2]],"date-time":"2019-05-02T00:00:00Z","timestamp":1556755200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"ERC Grant: Frontiers of Usable Security","award":["678341"],"award-info":[{"award-number":["678341"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2019,5,2]]},"DOI":"10.1145\/3290605.3300370","type":"proceedings-article","created":{"date-parts":[[2019,4,29]],"date-time":"2019-04-29T17:04:32Z","timestamp":1556557472000},"page":"1-12","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":48,"title":["\"If you want, I can store the encrypted password\""],"prefix":"10.1145","author":[{"given":"Alena","family":"Naiakshina","sequence":"first","affiliation":[{"name":"University of Bonn, Bonn, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Anastasia","family":"Danilova","sequence":"additional","affiliation":[{"name":"University of Bonn, Bonn, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Eva","family":"Gerlitz","sequence":"additional","affiliation":[{"name":"University of Bonn, Bonn, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Emanuel","family":"von Zezschwitz","sequence":"additional","affiliation":[{"name":"University of Bonn &amp; Fraunhofer FKIE, Bonn, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Matthew","family":"Smith","sequence":"additional","affiliation":[{"name":"University of Bonn &amp; Fraunhofer FKIE, Bonn, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2019,5,2]]},"reference":[{"key":"e_1_3_2_2_1_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.52"},{"key":"e_1_3_2_2_2_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2016.25"},{"key":"e_1_3_2_2_3_1","volume-title":"Thirteenth Sympo\u00adsium on Usable Privacy and Security (SOUPS","author":"Acar Yasemin","year":"2017","unstructured":"Yasemin Acar , Christian Stransky , Dominik Wermke , Michelle L. Mazurek , and Sascha Fahl . 2017. Security Developer Studies with GitHub Users: Exploring a Convenience Sample . In Thirteenth Sympo\u00adsium on Usable Privacy and Security (SOUPS 2017 ). USENIX Asso\u00adciation , Santa Clara, CA , 81--95. https:\/\/www.usenix.org\/conference\/ soups2017\/technical-sessions\/presentation\/acar Yasemin Acar, Christian Stransky, Dominik Wermke, Michelle L. Mazurek, and Sascha Fahl. 2017. Security Developer Studies with GitHub Users: Exploring a Convenience Sample. In Thirteenth Sympo\u00adsium on Usable Privacy and Security (SOUPS 2017). USENIX Asso\u00adciation, Santa Clara, CA, 81--95. https:\/\/www.usenix.org\/conference\/ soups2017\/technical-sessions\/presentation\/acar"},{"key":"e_1_3_2_2_4_1","doi-asserted-by":"crossref","unstructured":"Rebecca Balebako Abigail Marsh Jialiu Lin Jason I Hong and Lor\u00adrie Faith Cranor. 2014. The Privacy and Security Behaviors of Smart\u00adphone App Developers. (2014).  Rebecca Balebako Abigail Marsh Jialiu Lin Jason I Hong and Lor\u00adrie Faith Cranor. 2014. The Privacy and Security Behaviors of Smart\u00adphone App Developers. (2014).","DOI":"10.14722\/usec.2014.23006"},{"key":"e_1_3_2_2_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2017.59"},{"key":"e_1_3_2_2_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2012.49"},{"key":"e_1_3_2_2_8_1","unstructured":"Joseph Bonneau and S\u00f6ren Preibusch. 2010. The Password Thicket: Technical and Market Failures in Human Authentication on the Web.. In WEIS.  Joseph Bonneau and S\u00f6ren Preibusch. 2010. The Password Thicket: Technical and Market Failures in Human Authentication on the Web.. In WEIS."},{"key":"e_1_3_2_2_9_1","volume-title":"A coefficient of agreement for nominal scales. Educational and psychological measurement 20, 1","author":"Cohen Jacob","year":"1960","unstructured":"Jacob Cohen . 1960. A coefficient of agreement for nominal scales. Educational and psychological measurement 20, 1 ( 1960 ), 37--46. Jacob Cohen. 1960. A coefficient of agreement for nominal scales. Educational and psychological measurement 20, 1 (1960), 37--46."},{"key":"e_1_3_2_2_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/2470654.2481329"},{"key":"e_1_3_2_2_11_1","doi-asserted-by":"publisher","DOI":"10.5555\/2002168.2002177"},{"key":"e_1_3_2_2_12_1","volume-title":"Retrieved","author":"Finkle Jim","year":"2012","unstructured":"Jim Finkle and Jennifer Saba . 2012 . LinkedIn suffers data breach\u00ad-security experts . Retrieved May 18, 2017 from http:\/\/in.reuters.com\/ article\/linkedin-breach-idINDEE8550EN20120606 Jim Finkle and Jennifer Saba. 2012. LinkedIn suffers data breach\u00ad-security experts. Retrieved May 18, 2017 from http:\/\/in.reuters.com\/ article\/linkedin-breach-idINDEE8550EN20120606"},{"key":"e_1_3_2_2_13_1","volume-title":"Statistical methods for rates and proportions","author":"Fleiss Joseph L","unstructured":"Joseph L Fleiss , Bruce Levin , and Myunghee Cho Paik . 2013. Statistical methods for rates and proportions . John Wiley & Sons . Joseph L Fleiss, Bruce Levin, and Myunghee Cho Paik. 2013. Statistical methods for rates and proportions. John Wiley & Sons."},{"key":"e_1_3_2_2_14_1","doi-asserted-by":"publisher","DOI":"10.5555\/2717491.2717494"},{"key":"e_1_3_2_2_15_1","volume-title":"Dominik Wermke, Christian Stran\u00adsky, Sebastian M\u00f6ller, Yasemin Acar, and Sascha Fahl.","author":"Gorski Peter Leo","year":"2018","unstructured":"Peter Leo Gorski , Luigi Lo Iacono , Dominik Wermke, Christian Stran\u00adsky, Sebastian M\u00f6ller, Yasemin Acar, and Sascha Fahl. 2018 . Devel\u00adopers Deserve Security Warnings, Too : On the Effect of Integrated Security Advice on Cryptographic (API) Misuse. In Fourteenth Sympo\u00adsium on Usable Privacy and Security (SOUPS 2018). USENIX Associ\u00adation, Baltimore, MD , 265--281. https:\/\/www.usenix.org\/conference\/ soups2018\/presentation\/gorski Peter Leo Gorski, Luigi Lo Iacono, Dominik Wermke, Christian Stran\u00adsky, Sebastian M\u00f6ller, Yasemin Acar, and Sascha Fahl. 2018. Devel\u00adopers Deserve Security Warnings, Too: On the Effect of Integrated Security Advice on Cryptographic (API) Misuse. In Fourteenth Sympo\u00adsium on Usable Privacy and Security (SOUPS 2018). USENIX Associ\u00adation, Baltimore, MD, 265--281. https:\/\/www.usenix.org\/conference\/ soups2018\/presentation\/gorski"},{"key":"e_1_3_2_2_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/3173574.3174144"},{"key":"e_1_3_2_2_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/1753326.1753384"},{"key":"e_1_3_2_2_18_1","doi-asserted-by":"publisher","DOI":"10.1145\/2246036.2254400"},{"key":"e_1_3_2_2_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/1978942.1979321"},{"key":"e_1_3_2_2_20_1","volume-title":"Thirteenth Symposium on Usable Privacy and Security (SOUPS 2017","author":"Mayer Peter","year":"2017","unstructured":"Peter Mayer , Jan Kirchner , and Melanie Volkamer . 2017 . A Sec\u00adond Look at Password Composition Policies in the Wild: Comparing Samples from 2010 and 2016 . In Thirteenth Symposium on Usable Privacy and Security (SOUPS 2017 ). USENIX Association, Santa Clara, CA, 13--28. https:\/\/www.usenix.org\/conference\/soups 2017\/ technical-sessions\/presentation\/mayer Peter Mayer, Jan Kirchner, and Melanie Volkamer. 2017. A Sec\u00adond Look at Password Composition Policies in the Wild: Comparing Samples from 2010 and 2016. In Thirteenth Symposium on Usable Privacy and Security (SOUPS 2017). USENIX Association, Santa Clara, CA, 13--28. https:\/\/www.usenix.org\/conference\/soups2017\/ technical-sessions\/presentation\/mayer"},{"key":"e_1_3_2_2_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134082"},{"key":"e_1_3_2_2_22_1","volume-title":"Fourteenth Symposium on Usable Privacy and Security (SOUPS 2018","author":"Naiakshina Alena","year":"2018","unstructured":"Alena Naiakshina , Anastasia Danilova , Christian Tiefenau , and Matthew Smith . 2018 . Deception Task Design in Developer Pass\u00adword Studies: Exploring a Student Sample . In Fourteenth Symposium on Usable Privacy and Security (SOUPS 2018 ). USENIX Association, Baltimore, MD, USA, 297--313. https:\/\/www.usenix.org\/conference\/ soups 2018\/presentation\/naiakshina Alena Naiakshina, Anastasia Danilova, Christian Tiefenau, and Matthew Smith. 2018. Deception Task Design in Developer Pass\u00adword Studies: Exploring a Student Sample. In Fourteenth Symposium on Usable Privacy and Security (SOUPS 2018). USENIX Association, Baltimore, MD, USA, 297--313. https:\/\/www.usenix.org\/conference\/ soups2018\/presentation\/naiakshina"},{"key":"e_1_3_2_2_23_1","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3133977"},{"key":"e_1_3_2_2_24_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2010.22"},{"key":"e_1_3_2_2_25_1","volume-title":"Lor\u00adrie Faith Cranor, and Michelle L Mazurek","author":"Segreti Sean M","year":"2017","unstructured":"Sean M Segreti , William Melicher , Saranga Komanduri , Darya Melicher , Richard Shay , Blase Ur , Lujo Bauer , Nicolas Christin , Lor\u00adrie Faith Cranor, and Michelle L Mazurek . 2017 . Diversify to Survive : Making Passwords Stronger with Adaptive Policies. In Thirteenth Sym\u00adposium on Usable Privacy and Security (SOUPS). USENIX Associa\u00adtion, Santa Clara, CA, USA , 1--12. Sean M Segreti, William Melicher, Saranga Komanduri, Darya Melicher, Richard Shay, Blase Ur, Lujo Bauer, Nicolas Christin, Lor\u00adrie Faith Cranor, and Michelle L Mazurek. 2017. Diversify to Survive: Making Passwords Stronger with Adaptive Policies. In Thirteenth Sym\u00adposium on Usable Privacy and Security (SOUPS). USENIX Associa\u00adtion, Santa Clara, CA, USA, 1--12."},{"key":"e_1_3_2_2_26_1","volume-title":"Understanding Software Developers' Approach towards Implementing Data Minimization. arXiv preprint arXiv:1808.01479","author":"Senarath Awanthika","year":"2018","unstructured":"Awanthika Senarath and Nalin Asanka Gamagedara Arachchilage . 2018. Understanding Software Developers' Approach towards Implementing Data Minimization. arXiv preprint arXiv:1808.01479 ( 2018 ). Awanthika Senarath and Nalin Asanka Gamagedara Arachchilage. 2018. Understanding Software Developers' Approach towards Implementing Data Minimization. arXiv preprint arXiv:1808.01479 (2018)."},{"key":"e_1_3_2_2_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/2556288.2557377"},{"key":"e_1_3_2_2_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/2891411"},{"key":"e_1_3_2_2_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/1837110.1837113"},{"key":"e_1_3_2_2_30_1","volume-title":"Heuristics for Sample Size Determination in Multivariate Statistical Techniques. World Applied Sciences Journal 27 (01","author":"Siddiqui Kamran","year":"2013","unstructured":"Kamran Siddiqui . 2013. Heuristics for Sample Size Determination in Multivariate Statistical Techniques. World Applied Sciences Journal 27 (01 2013 ), 285--287. Kamran Siddiqui. 2013. Heuristics for Sample Size Determination in Multivariate Statistical Techniques. World Applied Sciences Journal 27 (01 2013), 285--287."},{"key":"e_1_3_2_2_31_1","volume-title":"The Password Life Cy\u00adcle: User Behaviour in Managing Passwords. In 10th Symposium On Usable Privacy and Security (SOUPS 2014","author":"Stobert Elizabeth","year":"2014","unstructured":"Elizabeth Stobert and Robert Biddle . 2014 . The Password Life Cy\u00adcle: User Behaviour in Managing Passwords. In 10th Symposium On Usable Privacy and Security (SOUPS 2014 ). USENIX Association, Menlo Park, CA, USA, 243--255. https:\/\/www.usenix.org\/conference\/ soups 2014\/proceedings\/presentation\/stobert Elizabeth Stobert and Robert Biddle. 2014. The Password Life Cy\u00adcle: User Behaviour in Managing Passwords. In 10th Symposium On Usable Privacy and Security (SOUPS 2014). USENIX Association, Menlo Park, CA, USA, 243--255. https:\/\/www.usenix.org\/conference\/ soups2014\/proceedings\/presentation\/stobert"},{"key":"e_1_3_2_2_32_1","volume-title":"A general inductive approach for analyzing qualitative evaluation data. American journal of evaluation 27, 2","author":"Thomas David R","year":"2006","unstructured":"David R Thomas . 2006. A general inductive approach for analyzing qualitative evaluation data. American journal of evaluation 27, 2 ( 2006 ), 237--246. David R Thomas. 2006. A general inductive approach for analyzing qualitative evaluation data. American journal of evaluation 27, 2 (2006), 237--246."},{"key":"e_1_3_2_2_33_1","doi-asserted-by":"publisher","DOI":"10.1145\/2858036.2858546"},{"key":"e_1_3_2_2_34_1","first-page":"51","article-title":"Helping Users Create Better Passwords","volume":"37","author":"Ur Blase","year":"2012","unstructured":"Blase Ur , Patrick Gage Kelley , Saranga Komanduri , Joel Lee , Michael Maass , Michelle L. Mazurek , Timothy Passaro , Richard Shay , Timothy Vidas , Lujo Bauer , Nicolas Christin , Lorrie Faith Cranor , Serge Egelman , and Julio L\u00f3pez . 2012 . Helping Users Create Better Passwords . USENIX 37 , 6 (2012), 51 -- 57 . http:\/\/www.ece.cmu.edu\/~lbauer\/papers\/ 2012\/login2012-passwords.pdf Blase Ur, Patrick Gage Kelley, Saranga Komanduri, Joel Lee, Michael Maass, Michelle L. Mazurek, Timothy Passaro, Richard Shay, Timothy Vidas, Lujo Bauer, Nicolas Christin, Lorrie Faith Cranor, Serge Egelman, and Julio L\u00f3pez. 2012. Helping Users Create Better Passwords. USENIX 37, 6 (2012), 51--57. http:\/\/www.ece.cmu.edu\/~lbauer\/papers\/ 2012\/login2012-passwords.pdf","journal-title":"USENIX"},{"key":"e_1_3_2_2_35_1","volume-title":"Eleventh Symposium On Usable Privacy and Security (SOUPS 2015","author":"Ur Blase","year":"2015","unstructured":"Blase Ur , Fumiko Noma , Jonathan Bees , Sean M. Segreti , Richard Shay , Lujo Bauer , Nicolas Christin , and Lorrie Faith Cranor . 2015 . I Added '!' at the End to Make It Secure: Observing Password Creation in the Lab . In Eleventh Symposium On Usable Privacy and Security (SOUPS 2015 ). USENIX Association, Ottawa, 123--140. https:\/\/www. usenix.org\/conference\/soups 2015\/proceedings\/presentation\/ur Blase Ur, Fumiko Noma, Jonathan Bees, Sean M. Segreti, Richard Shay, Lujo Bauer, Nicolas Christin, and Lorrie Faith Cranor. 2015. I Added '!' at the End to Make It Secure: Observing Password Creation in the Lab. In Eleventh Symposium On Usable Privacy and Security (SOUPS 2015). USENIX Association, Ottawa, 123--140. https:\/\/www. usenix.org\/conference\/soups2015\/proceedings\/presentation\/ur"},{"key":"e_1_3_2_2_36_1","volume-title":"If your password is 123456, just make it hackme. The New York Times 20","author":"Vance Ashlee","year":"2010","unstructured":"Ashlee Vance . 2010. If your password is 123456, just make it hackme. The New York Times 20 ( 2010 ). Ashlee Vance. 2010. If your password is 123456, just make it hackme. The New York Times 20 (2010)."},{"key":"e_1_3_2_2_37_1","volume-title":"Twelfth Symposium on Us\u00adable Privacy and Security (SOUPS). USENIX Association","author":"Wash Rick","year":"2016","unstructured":"Rick Wash , Emilee Rader , Ruthie Berman , and Zac Wellmer . 2016 . Understanding Password Choices: How Frequently Entered Passwords are Re-used across Websites . In Twelfth Symposium on Us\u00adable Privacy and Security (SOUPS). USENIX Association , Den\u00adver, CO, 175--188. https:\/\/www.usenix.org\/conference\/soups 2016\/ technical-sessions\/presentation\/wash Rick Wash, Emilee Rader, Ruthie Berman, and Zac Wellmer. 2016. Understanding Password Choices: How Frequently Entered Passwords are Re-used across Websites. In Twelfth Symposium on Us\u00adable Privacy and Security (SOUPS). USENIX Association, Den\u00adver, CO, 175--188. https:\/\/www.usenix.org\/conference\/soups2016\/ technical-sessions\/presentation\/wash"},{"key":"e_1_3_2_2_38_1","volume-title":"d.}. Am I Responsible for End-User's Security? USENIX Association","author":"Wijayarathna Chamila","year":"2018","unstructured":"Chamila Wijayarathna and Nalin AG Arachchilage . {n. d.}. Am I Responsible for End-User's Security? USENIX Association , Baltimore, MD . https:\/\/wsiw 2018 .l3s.uni-hannover.de\/ Chamila Wijayarathna and Nalin AG Arachchilage. {n. d.}. Am I Responsible for End-User's Security? USENIX Association, Baltimore, MD. https:\/\/wsiw2018.l3s.uni-hannover.de\/"},{"key":"e_1_3_2_2_39_1","doi-asserted-by":"publisher","DOI":"10.1145\/3210459.3210483"},{"key":"e_1_3_2_2_40_1","doi-asserted-by":"publisher","DOI":"10.1109\/WCRE.2013.6671299"},{"key":"e_1_3_2_2_41_1","doi-asserted-by":"publisher","DOI":"10.1109\/USER.2013.6603077"}],"event":{"name":"CHI '19: CHI Conference on Human Factors in Computing Systems","location":"Glasgow Scotland Uk","acronym":"CHI '19","sponsor":["SIGCHI ACM Special Interest Group on Computer-Human Interaction"]},"container-title":["Proceedings of the 2019 CHI Conference on Human Factors in Computing Systems"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3290605.3300370","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3290605.3300370","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T23:53:21Z","timestamp":1750204401000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3290605.3300370"}},"subtitle":["A Password-Storage Field Study with Freelance Developers"],"short-title":[],"issued":{"date-parts":[[2019,5,2]]},"references-count":40,"alternative-id":["10.1145\/3290605.3300370","10.1145\/3290605"],"URL":"https:\/\/doi.org\/10.1145\/3290605.3300370","relation":{},"subject":[],"published":{"date-parts":[[2019,5,2]]},"assertion":[{"value":"2019-05-02","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}