{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,9]],"date-time":"2026-07-09T15:18:41Z","timestamp":1783610321413,"version":"3.55.0"},"publisher-location":"New York, NY, USA","reference-count":23,"publisher":"ACM","license":[{"start":{"date-parts":[[2019,5,13]],"date-time":"2019-05-13T00:00:00Z","timestamp":1557705600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2019,5,13]]},"DOI":"10.1145\/3308558.3313481","type":"proceedings-article","created":{"date-parts":[[2019,5,13]],"date-time":"2019-05-13T12:17:59Z","timestamp":1557749879000},"page":"372-382","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":30,"title":["Evaluating Login Challenges as aDefense Against Account Takeover"],"prefix":"10.1145","author":[{"given":"Periwinkle","family":"Doerfler","sequence":"first","affiliation":[{"name":"NYU, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Kurt","family":"Thomas","sequence":"additional","affiliation":[{"name":"Google, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Maija","family":"Marincenko","sequence":"additional","affiliation":[{"name":"Google, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Juri","family":"Ranieri","sequence":"additional","affiliation":[{"name":"Google, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Yu","family":"Jiang","sequence":"additional","affiliation":[{"name":"Google, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Angelika","family":"Moscicki","sequence":"additional","affiliation":[{"name":"Google, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Damon","family":"McCoy","sequence":"additional","affiliation":[{"name":"NYU, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2019,5,13]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1109\/COMST.2017.2651741"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/2736277.2741691"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2012.44"},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/1180405.1180427"},{"key":"e_1_3_2_1_5_1","volume-title":"Proceedings of the USENIX Workshop on Offensive Technologies","author":"Cova Marco","year":"2008","unstructured":"Marco Cova , Christopher Kruegel , and Giovanni Vigna . There is no free phish: an analysis of \"free\" and live phishing kits . In Proceedings of the USENIX Workshop on Offensive Technologies , 2008 . Marco Cova, Christopher Kruegel, and Giovanni Vigna. There is no free phish: an analysis of \"free\" and live phishing kits. In Proceedings of the USENIX Workshop on Offensive Technologies, 2008."},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-58387-6_9"},{"key":"e_1_3_2_1_7_1","volume-title":"Guide to two-factor authentication. https:\/\/guide.duo.com\/","author":"Security Duo","year":"2018","unstructured":"Duo Security . Guide to two-factor authentication. https:\/\/guide.duo.com\/ , 2018 . Duo Security. Guide to two-factor authentication. https:\/\/guide.duo.com\/, 2018."},{"key":"e_1_3_2_1_8_1","volume-title":"Facebook has users identify friends in photos to verify accounts, prevent unauthorized access. https:\/\/www.adweek.com\/digital\/facebook-photos-verify\/","year":"2010","unstructured":"Facebook. Facebook has users identify friends in photos to verify accounts, prevent unauthorized access. https:\/\/www.adweek.com\/digital\/facebook-photos-verify\/ , 2010 . Facebook. Facebook has users identify friends in photos to verify accounts, prevent unauthorized access. https:\/\/www.adweek.com\/digital\/facebook-photos-verify\/, 2010."},{"key":"e_1_3_2_1_9_1","volume-title":"Improving account security with delegated recovery. https:\/\/www.facebook.com\/notes\/protect-the-graph\/improving-account-security-with-delegated-recovery\/1833022090271267\/","year":"2017","unstructured":"Facebook. Improving account security with delegated recovery. https:\/\/www.facebook.com\/notes\/protect-the-graph\/improving-account-security-with-delegated-recovery\/1833022090271267\/ , 2017 . Facebook. Improving account security with delegated recovery. https:\/\/www.facebook.com\/notes\/protect-the-graph\/improving-account-security-with-delegated-recovery\/1833022090271267\/, 2017."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2016.23240"},{"key":"e_1_3_2_1_11_1","volume-title":"Confirm your identity using your android device. https:\/\/support.google.com\/accounts\/answer\/6046815?hl=en","year":"2018","unstructured":"Google. Confirm your identity using your android device. https:\/\/support.google.com\/accounts\/answer\/6046815?hl=en , 2018 . Google. Confirm your identity using your android device. https:\/\/support.google.com\/accounts\/answer\/6046815?hl=en, 2018."},{"key":"e_1_3_2_1_12_1","volume-title":"reCAPTCHA v3. https:\/\/developers.google.com\/recaptcha\/docs\/v3","year":"2018","unstructured":"Google. reCAPTCHA v3. https:\/\/developers.google.com\/recaptcha\/docs\/v3 , 2018 . Google. reCAPTCHA v3. https:\/\/developers.google.com\/recaptcha\/docs\/v3, 2018."},{"key":"e_1_3_2_1_13_1","volume-title":"Sign in faster with 2-step verification phone prompts. https:\/\/support.google.com\/accounts\/answer\/7026266?&hl=en","year":"2018","unstructured":"Google. Sign in faster with 2-step verification phone prompts. https:\/\/support.google.com\/accounts\/answer\/7026266?&hl=en , 2018 . Google. Sign in faster with 2-step verification phone prompts. https:\/\/support.google.com\/accounts\/answer\/7026266?&hl=en, 2018."},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.14722\/usec.2015.23002"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/1456424.1456435"},{"key":"e_1_3_2_1_16_1","volume-title":"Google Authenticator will add a formidable layer of protection to your e-mail account. https:\/\/mashable.com\/2017\/10\/29\/how-to-set-up-google-authenticator","author":"Kaufman Mark","year":"2017","unstructured":"Mark Kaufman . Google Authenticator will add a formidable layer of protection to your e-mail account. https:\/\/mashable.com\/2017\/10\/29\/how-to-set-up-google-authenticator , 2017 . Mark Kaufman. Google Authenticator will add a formidable layer of protection to your e-mail account. https:\/\/mashable.com\/2017\/10\/29\/how-to-set-up-google-authenticator, 2017."},{"key":"e_1_3_2_1_17_1","volume-title":"Proceedings of the International Conference on Financial Cryptography and Data Security","author":"Lang Juan","year":"2016","unstructured":"Juan Lang , Alexei Czeskis , Dirk Balfanz , Marius Schilder , and Sampath Srinivas . Security keys : Practical cryptographic second factors for the modern web . In Proceedings of the International Conference on Financial Cryptography and Data Security , 2016 . Juan Lang, Alexei Czeskis, Dirk Balfanz, Marius Schilder, and Sampath Srinivas. Security keys: Practical cryptographic second factors for the modern web. In Proceedings of the International Conference on Financial Cryptography and Data Security, 2016."},{"key":"e_1_3_2_1_18_1","volume-title":"Azure active directory identity protection. https:\/\/docs.microsoft.com\/en-us\/azure\/active-directory\/active-directory-identityprotection","year":"2018","unstructured":"Microsoft. Azure active directory identity protection. https:\/\/docs.microsoft.com\/en-us\/azure\/active-directory\/active-directory-identityprotection , 2018 . Microsoft. Azure active directory identity protection. https:\/\/docs.microsoft.com\/en-us\/azure\/active-directory\/active-directory-identityprotection, 2018."},{"key":"e_1_3_2_1_19_1","volume-title":"Enigma","author":"Milka Grzegorz","year":"2018","unstructured":"Grzegorz Milka . Anatomy of account takeover . In Enigma , 2018 . Grzegorz Milka. Anatomy of account takeover. In Enigma, 2018."},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1145\/3308558.3313489"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2016.09.009"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134067"},{"key":"e_1_3_2_1_23_1","volume-title":"New research: Understanding the root cause of account takeover. https:\/\/security.googleblog.com\/2017\/11\/new-research-understanding-root-cause.html","author":"Thomas Kurt","year":"2017","unstructured":"Kurt Thomas and Angelika Moscicki . New research: Understanding the root cause of account takeover. https:\/\/security.googleblog.com\/2017\/11\/new-research-understanding-root-cause.html , 2017 . Kurt Thomas and Angelika Moscicki. New research: Understanding the root cause of account takeover. https:\/\/security.googleblog.com\/2017\/11\/new-research-understanding-root-cause.html, 2017."}],"event":{"name":"WWW '19: The Web Conference","location":"San Francisco CA USA","acronym":"WWW '19","sponsor":["IW3C2 International World Wide Web Conference Committee"]},"container-title":["The World Wide Web Conference"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3308558.3313481","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3308558.3313481","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T01:02:18Z","timestamp":1750208538000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3308558.3313481"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,5,13]]},"references-count":23,"alternative-id":["10.1145\/3308558.3313481","10.1145\/3308558"],"URL":"https:\/\/doi.org\/10.1145\/3308558.3313481","relation":{},"subject":[],"published":{"date-parts":[[2019,5,13]]},"assertion":[{"value":"2019-05-13","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}