Home

About Us

News

Research

Authentication Research Paper Index

A core objective of the Password Research Institute is to improve the industry awareness of existing authentication research. Many valuable solutions for the problems associated with authentication have gone unnoticed by the people interested in, or responsible for, authentication security.

This project will compile and share a comprehensive, but moderated, index of password and authentication related research papers. We aim to share the details of useful papers, provide access to the papers, and encourage collaboration between authors and other security professionals.

Please note that we are currently in the process of manually transferring our existing database of research papers into a new format that can be published here. Accordingly, you may see papers missing from this index that we fully intend to share as soon as possible. Thank you for your patience during this work.

If you have an appropriate research paper to add, please send a copy of the paper along with details on its source to siteupdates@passwordresearch.com.

Research Paper Index

Graphical Password Authentication Using Cued Click Points
Author(s): Sonia Chiasson, Paul van Oorschot, Robert Biddle
Publication: Proceedings of ESORICS 2007 - Date: September 2007

A Second Look at the Usability of Click-Based Graphical Passwords
Author(s): Sonia Chiasson, Robert Biddle, Paul van Oorschot
Publication: Proceedings of the Symposium On Usable Privacy and Security (SOUPS) 2007 - Date: July 2007

Graphical Passwords & Qualitative Spatial Relations
Author(s): Di Lin, Paul Dunphy, Patrick Olivier, Jianxin Jeff Yan
Publication: Proceedings of the Symposium On Usable Privacy and Security (SOUPS) 2007 - Date: July 2007

Modeling User Choice in the PassPoints Graphical Password Scheme
Author(s): Ahmet Emir Dirik, Nasir Memon, Jean-Camille Birget
Publication: Proceedings of the Symposium On Usable Privacy and Security (SOUPS) 2007 - Date: July 2007

Privacy Implications for Single Sign-on Authentication In a Hospital Environment
Author(s): Rosa R. Heckle, Wayne G. Lutters
Publication: Proceedings of the Symposium On Usable Privacy and Security (SOUPS) 2007 - Date: July 2007

Reducing Shoulder-surfing by Using Gaze-based Password Entry
Author(s): Manu Kumar, Tal Garfinkel, Dan Boneh, Terry Winograd
Publication: Proceedings of the Symposium On Usable Privacy and Security (SOUPS) 2007 - Date: July 2007

TwoKind Authentication: Usable Authentication for Untrustworthy Environments
Author(s): Katelin Bailey, Linden Vongsathorn, Apu Kapadia, Chris Masone, Sean W. Smith
Publication: Proceedings of the Symposium On Usable Privacy and Security (SOUPS) 2007 - Date: July 2007

A Comparative Study of Three Random Password Generators
Author(s): Michael D. Leonhard, V. N. Venkatakrishnan
Publication: Proceedings of the IEEE Electro/Information Technology Conference (EIT) 2007 - Date: May 2007

Mnemonic Password Formulas: Remembering Secure Passwords
Author(s): Druid
Publication: NA - Date: May 2007

Issues in User Authentication
Author(s): Sonia Chiasson, Robert Biddle
Publication: CHI 2007 Workshop on Security User Studies - Date: April 2007

A Usability Study and Critique of Two Password Managers
Author(s): Sonia Chiasson, Paul van Oorschot, Robert Biddle
Publication: USENIX Security Symposium - Date: July 2006

Password Management Strategies for Online Accounts
Author(s): Shirley Gaw, Edward W. Felten
Publication: Proceedings of the Symposium On Usable Privacy and Security (SOUPS) 2006 - Date: July 2006

Replacing Passwords: In Search of the Secret Remedy
Author(s): Steven Furnell, Leith Zekri
Publication: Network Security, Volume 2006, Issue 1 - Date: January 2006

A Comparison of Perceived and Real Shoulder-Surfing Risks Between Alphanumeric and Graphical Passwords
Author(s): Furkan Tari, A. Ant Ozok, Stephen H. Holden
Publication: Proceedings of the Second Symposium on Usable Privacy and Security, ACM International Conference Proceedings Series; Volume 149 - Date: 2006

Evaluation on a Keystroke Authentication System by Keying Force Incorporated with Temporal Characteristics of Keystroke Dynamics
Author(s): K. Kotani, K. Horii
Publication: Behaviour & Information Technology, Volume 24, Number 4 - Date: July 2005

Is a Picture Really Worth a Thousand Words? Exploring the Feasibility of Graphical Authentication Systems
Author(s): Antonella De Angeli, Lynne Coventry, Graham Johnson, Karen Renaud
Publication: International Journal of Human-Computer Studies, Volume 63, Issues 1-2 - Date: July 2005

PassPoints: Design and Longitudinal Evaluation of a Graphical Password System
Author(s): Susan Wiedenbeck, Jim Waters, Jean-Camille Birget, Alex Brodskiy, Nasir Memon
Publication: International Journal of Human-Computer Studies, Volume 63, Issues 1-2 - Date: July 2005

Authenticating Ourselves: Will We Ever Escape the Password?
Author(s): Steven Furnell
Publication: Network Security, Volume 2005, Issue 3 - Date: March 2005

A Framework for the Selection, Use, Deployment and Management of Strong Authentication Mechanisms within Computer Systems
Author(s): Richard Roberts
Publication: - Date: 2005

Designing Authentication Systems with Challenge Questions
Author(s): Mike Just
Publication: Security and Usability: Designing Secure Systems That People Can Use - Date: 2005

Evaluating Authentication Mechanisms
Author(s): Karen Renaud
Publication: Security and Usability: Designing Secure Systems That People Can Use - Date: 2005

Authentication Tokens Aren't Essential for Online Banking
Author(s): Ant Allan, Clare Hirst, Jay Heiser, Avivah Litan
Publication: G00124965 - Date: December 17 2004

Passwords Are Near the Breaking Point
Author(s): Ant Allan
Publication: Gartner G00124970 - Date: December 6 2004

Key Infection: Smart Trust for Smart Dust
Author(s): Ross Anderson, Haowen Chan, Adrian Perrig
Publication: Proceedings of the 12th IEEE International Conference on Network Protocols (ICNP) - Date: October 2004

Designing and Evaluating Challenge-Question Systems
Author(s): Mike Just
Publication: IEEE Security & Privacy Journal, Volume 2, Number 5 - Date: September 2004

Improving Password System Effectiveness
Author(s): Sacha Brostoff
Publication: University College London PhD Thesis - Date: September 2004

Securing Identity: Strong Authentication and Hardware Tokens
Author(s): Earl Perkins
Publication: META Group Practice, 2254 - Date: September 16 2004

Typing Patterns: A Key to User Identification
Author(s): Alen Peacock, Xian KE, Matthew Wilkerson
Publication: IEEE Security & Privacy, Volume 2, Number 5 - Date: September 2004

Graphical Dictionaries and the Memorable Space of Graphical Passwords
Author(s): Julie Thorpe, Paul van Oorschot
Publication: Proceedings of the13th USENIX Security Symposium - Date: August 11 2004

On User Choice in Graphical Password Schemes
Author(s): Darren Davis, Fabian Monrose
Publication: Proceedings of the 13th USENIX Security Symposium - Date: August 11 2004

BioEvA: An Evaluation Tool for Biometric Algorithms
Author(s): Luiz H. R. Sucupira Jr., Livia C. F. Araujo, Miguel G. Lizarraga, Lee L. Ling
Publication: Proceedings of the First International Conference on Biometric Authentication, ICBA 2004 - Date: July 2004

Biometric Personal Authentication Based on Handwritten Signals
Author(s): Miguel G. Lizarraga, Lee L. Ling
Publication: Proceedings of the First International Conference on Biometric Authentication, ICBA 2004 - Date: July 2004

User Authentication through Typing Biometrics Features
Author(s): Livia C. F. Araujo, Luiz H. R. Sucupira Jr., Miguel G. Lizarraga, Lee L. Ling, Joao B. T. Yabu-uti
Publication: Proceedings of the First International Conference on Biometric Authentication, ICBA 2004 - Date: July 2004

Generating and Remembering Passwords
Author(s): Alan S. Brown, Elisabeth Bracken, Sandy Zoccoli, King Douglas
Publication: Applied Cognitive Psychology, Volume 18, Issue 6 - Date: June 15 2004

Liveness Detection in Fingerprint Recognition Systems
Author(s): Marie Sandstrom
Publication: - Date: June 10 2004

Password Problems, Policies, Practices, and Planning
Author(s): Earl Perkins
Publication: META Group Delta, 2978 - Date: June 29 2004

Analyzing User Choice in Graphical Passwords
Author(s): Deholo Nali, Julie Thorpe
Publication: TR-04-01 - Date: May 27 2004

Strong Authentication and Health Information Access
Author(s): Earl Perkins
Publication: META Group Delta, 2920 - Date: May 20 2004

Computer Password Choice and Personality Traits Among College Students
Author(s): Betty J. Brown, Ken Callis
Publication: - Date: April 25 2004

Passwords You'll Never Forget, but Can't Recall
Author(s): Daphna Weinshall, Scott Kirkpatrick
Publication: Proceedings of the Conference on Computer Human Interaction (CHI) 2004 - Date: April 2004

The Domino Effect of Password Reuse
Author(s): Blake Ives, Kenneth R. Walsh, Helmut Schneider
Publication: Communications of the ACM, Volume 47, Issue 4 - Date: April 2004

Call Center Customer Verification by Query-Directed Passwords
Author(s): Lawrence O'Gorman, Amit Bagga, Jon Bentley
Publication: Proceedings of Financial Cryptography 04 - Date: February 2004

Parallelization of John the Ripper (JtR) using MPI
Author(s): Ryan Lim
Publication: - Date: January 22 2004

Password-Based Authentication: A System Perspective
Author(s): Art Conklin, Glenn Dietrich, Diane Walz
Publication: Proceedings of the 37th Hawaii International Conference on System Sciences 2004 - Date: January 2004

A long-term trial of alternative user authentication technologies
Author(s): Steven Furnell, I. Papadopoulos, P. S. Dowland
Publication: Information Management and Computer Security, Volume 12, Number 2 - Date: 2004

Evaluation of the Human Impact of Password Authentication Practices on Information Security
Author(s): Deborah Sater Carstens, Pamela R. McCauley-Bell, Linda C. Malone, Ronald F. DeMara
Publication: Informing Science Journal, Volume 7 - Date: 2004

Hyppocrates: A New Proactive Password Checker
Author(s): Carlo Blundo, Paolo D'Arco, Alfredo De Santis, Clemente Galdi
Publication: The Journal of Systems and Software, Number 71 - Date: 2004

Password Policy: The Good, the Bad, and the Ugly
Author(s): Wayne C. Summers, Edward Bosworth
Publication: Proceedings of the Winter International Symposium on Information and Communication Technologies - Date: 2004

Secure Authentication Schemes Suitable for an Associative Memory
Author(s): Daphna Weinshall
Publication: Technical Report 2004-30 - Date: 2004

Keystroke Dynamics: A Software-based Biometric Solution
Author(s): Lucy Jin, Xian Ke, Ryan Manuel, Matthew Wilkerson
Publication: - Date: December 2003

Teracrack: Password cracking using TeraFLOP and PetaByte Resources
Author(s): Tom Perrine, Devin Kowatch
Publication: - Date: September 2003

A New Key Authentication Scheme Based on Discrete Logarithms
Author(s): Cheng-Chi Lee, Min-Shiang Hwang, Li-Hua Li
Publication: Applied Mathematics and Computation, Volume 139, Issue 2-3 - Date: July 2003

Homeland Security Will Drive the Authentication Market
Author(s): Eric Ogren
Publication: - Date: June 17 2003

Passwords Are Gobbling Up Your Profits!
Author(s): Jim Hurley
Publication: Ask the Analysts - Date: May 1 2003

"Ten Strikes and You're Out": Increasing the Number of Login Attempts Can Improve Password Usability
Author(s): Sacha Brostoff, Martina Angela Sasse
Publication: Proceedings of CHI 2003, Workshop on Human-Computer Interaction and Security Systems - Date: April 2003

Authentication for Remote Voting
Author(s): Nathanael Paul, David Evans, Aviel D. Rubin, Dan Wallach
Publication: Proceedings of CHI 2003, Workshop on Human-Computer Interaction and Security Systems - Date: April 2003

Designing Secure Yet Usable Credential Recovery Systems with Challenge Questions
Author(s): Mike Just
Publication: Proceedings of CHI 2003, Workshop on Human-Computer Interaction and Security Systems - Date: April 2003

Honest It's Me! Self Service Verification
Author(s): Lynne Coventry, Antonella De Angeli, Graham Johnson
Publication: Proceedings of CHI 2003, Workshop on Human-Computer Interaction and Security Systems - Date: April 2003

Exploring Secure Identity Management in Global Enterprises
Author(s): Author(s) Unknown
Publication: - Date: March 2003

User IDs and Password Standards: Balancing Usability and Security
Author(s): Chris King
Publication: META Group Client Advisor, 705 - Date: January 20 2003

Making a Faster Cryptanalytic Time-Memory Trade-Off
Author(s): Philippe Oechslin
Publication: Lecture Notes in Computer Science (Proceedings of Crypto '03) - Date: 2003

Securing Passwords Against Dictionary Attacks
Author(s): Benny Pinkas, Tomas Sander
Publication: Proceedings of the 9th ACM Conference on Computer and Communications Security - Date: November 2002

Survey: Admins Implement Password Security, But Auditing is Rare
Author(s): Jason Hiner
Publication: TechRepublic Web site - Date: November 11 2002

META Trend Update: Authentication and All That Jazz
Author(s): Earl Perkins
Publication: META Group Delta, 969 - Date: February 19 2002

Password Hardening Based on Keystroke Dynamics
Author(s): Fabian Monrose, Michael K. Reiter, Susanne Wetzel
Publication: International Journal on Information Security, Volume 1, Number 2 - Date: February 2002

Multi-Source Performance Analysis of Distributed Software
Author(s): Christoph Steigner, Jürgen Wilke
Publication: Proceedings of the Communication Networks and Distributed Systems Modeling and Simulation Conference (CNDS 2002) - Date: January 2002

A Novel Approach to Proactive Password Checking
Author(s): Carlo Blundo, Paolo D'Arco, Alfredo De Santis, Clemente Galdi
Publication: Lecture Notes in Computer Science, Number 2437 - Date: 2002

An Experimental Comparison of Secret-Based User Authentication Technologies
Author(s): I. Irakleous, Steven Furnell, P. S. Dowland, M. Papadaki
Publication: Information Management and Computer Security, Volume 10, Number 3 - Date: 2002

Remote Access Authentication: Tokens Rule in 2002
Author(s): John Girard
Publication: Gartner T-14-9809 - Date: December 13 2001

A Note on Proactive Password Checking
Author(s): Jianxin Jeff Yan
Publication: ACM New Security Paradigms Workshop - Date: September 2001

Echo Back in Implementation of Passphrase Authentication
Author(s): Kanta Matsuura
Publication: Proceedings of the 2001 International Workshop on Cryptology and Network Security - Date: September 2001

Pretty Good Persuasion: A First Step Towards Effective Password Security in the Real World
Author(s): Dirk Weirich, Martina Angela Sasse
Publication: Proceedings of the New Security Paradigms Workshop 2001 - Date: September 2001

Transforming the 'Weakest Link' — a Human/Computer Interaction Approach to Usable and Effective Security
Author(s): M A Sasse, S Brostoff, D Weirich
Publication: BT Technology Journal, Volume 19, Issue 3 - Date: July 2001

Persuasive Password Security
Author(s): Dirk Weirich, Martina Angela Sasse
Publication: CHI 2001 - Date: April 2001

Authentication: Who's That Knocking on the Door?
Author(s): Kristen Noakes-Fry, Ant Allan
Publication: Gartner TU-12-9616 - Date: February 6 2001

A Practical Guide to Biometric Security Technology
Author(s): Simon Liu, Mark Silverman
Publication: IT Professional, Volume 3, Number 1 - Date: January 2001

Best Practices for Managing PINs and Passwords
Author(s): Roberta J. Witty
Publication: Gartner QA-12-8664 - Date: January 30 2001

Error-Tolerant Password Recovery
Author(s): Niklas Frykholm, Ari Juels
Publication: Proceedings of the ACM Conference on Computer and Communication Security (CCS '01) - Date: 2001

1999 Token and IT Authentication Market
Author(s): Chris Christiansen, Nora S. Freedman, Brian Burke, Charles Kolodgy
Publication: IDC Bulletin #23270 - Date: November 2000

An Efficient Secure Authenticated Group Key Exchange Algorithm for Large and Dynamic Groups
Author(s): Jim Alves-Foss
Publication: 23rd National Information Systems Security Conference - Date: October 2000

Attitudes and Behavior Towards Password Use on the World Wide Web
Author(s): Jason Hong, Hesham Kamel, John Kodumal, Francis Li, James Lin
Publication: - Date: October 11 2000

Are Passfaces More Usable Than Passwords? A Field Trial Investigation
Author(s): Sacha Brostoff, Martina Angela Sasse
Publication: Proceedings of CHI 2000, People and Computers XIV - Date: September 2000

Keystroke Dynamics as a Biometric for Authentication
Author(s): Fabian Monrose, Aviel D. Rubin
Publication: Future Generation Computing Systems (FGCS) Journal: Security on the Web (special issue) - Date: March 2000

Resetting Password Strategy
Author(s): Chris King
Publication: META Group Delta, 881 - Date: March 28 2000

Directed One-Time Password Authentication Scheme Based Upon Discrete Logarithm
Author(s): Shaohua Tang
Publication: Journal of Circuits, Systems, and Computers, Volume 10, Number 3/4 - Date: 2000

Protecting Secret Keys with Personal Entropy
Author(s): Carl Ellison, Chris Hall, Randy Milbert, Bruce Schneier
Publication: Journal of Future Generation Computer Systems, Volume 16, Number 4 - Date: 2000

Word Association Computer Passwords: The Effect of Formulation Techniques on Recall and Guessing Rates
Author(s): Rachael Pond, John Podd, Julie Bunnell, Ron Henderson
Publication: Computers and Security, Volume 19, Number 7 - Date: 2000

Users Are Not The Enemy
Author(s): Anne Adams, Martina Angela Sasse
Publication: Communications of the ACM, Volume 42, Issue 12 - Date: December 1999

Automatically Detecting Authentication Limitations in Commercial Security Protocols
Author(s): Stephen H. Brackin
Publication: 22nd National Information Systems Security Conference - Date: October 1999

Provably Insecure Mutual Authentication Protocols: The Two-Party Symmetric-Encryption Case
Author(s): Jim Alves-Foss
Publication: 22nd National Information Systems Security Conference - Date: October 1999

An Efficient Authentication Protocol for Mobile Networks
Author(s): Shiuh-Pyng Shieh, Fu-Shen Ho, Yu-Lun Huang
Publication: Journal of Information Science and Engineering: Volume 15, Number 4 - Date: July 1999

A Digital Certificate Road Map
Author(s): Ted Julian
Publication: The Forrester Report - Date: June 1999

A Future-Adaptable Password Scheme
Author(s): N. Provos, David Mazieres
Publication: Proceedings of the 1999 USENIX Annual Technical Conference - Date: June 1999

Authentication Adolescence
Author(s): Marlo Kosanovich
Publication: META Group Delta, 779 - Date: April 29 1999

A Multimodal Biometric System Using Fingerprints, Face and Speech
Author(s): Anil K. Jain, Lin Hong, Y. Kulkarni
Publication: 2nd International Conference on Audio and Video-based Biometric Person Authentication - Date: March 1999

A Real-World Analysis of Kerberos Password Security
Author(s): Thomas Wu
Publication: Proceedings of the 1999 ISOC Symposium on Network and Distributed System Security - Date: February 1999

A Fuzzy Commitment Scheme
Author(s): Ari Juels, Martin Wattenberg
Publication: Proceedings of the 6th ACM Conference on Computer and Communications Security - Date: 1999

A Remote Password Authentication Scheme Based on the Digital Signature Model
Author(s): Min-Shiang Hwang
Publication: International Journal of Computer Mathematics, Volume 70, Number 4 - Date: 1999

Hash Vusualization: A New Technique to Improve Real-World Security
Author(s): Adrian Perrig, Dawn Song
Publication: Proceedings of the International Workshop on Cryptographic Techniques and E-Commerce (CrypTEC '99) - Date: 1999

A Password Authentication Method for Contents Communications on the Internet
Author(s): Akihiro Shimizu, Tsumotu Horioka, Hirohito Inagaki
Publication: IEICE Transactions on Communications: Volume E81-B, Number 8 - Date: August 1998

A Modular Approach to the Design and Analysis of Authentication and Key Exchange Protocols
Author(s): Mihir Bellare, Ran Canetti, Hugo Krawczyk
Publication: Proceedings of the 30th Annual Symposium on the Theory of Computing / Eurocrypt 1998? - Date: 1998

A Password Authentication Method and Its Applications
Author(s): Tsumotu Horioka, Akihiro Shimizu
Publication: INET '98 Conference Proceedings - Date: 1998

Enhanced Password Authentication through Fuzzy Logic
Author(s): Willem G. de Ru, Jan H. P. Eloff
Publication: IEEE Expert: Intelligent Systems and Their Applications, Volume 12, Issue 6 - Date: November 1997

Making Passwords Secure and Usable
Author(s): Anne Adams, Martina Angela Sasse, Peter Lunt
Publication: People and Computers XII, Proceedings of HCI '97 - Date: August 1997

A Secure Password Storage Policy
Author(s): Charles Cresson Wood
Publication: Information Management & Computer Security, Volume 5, Number 2/3 - Date: July 25 1997

Cognitive, Associative, and Conventional Passwords: Recall and Guessing Rates
Author(s): Julie Bunnell, John Podd, Ron Henderson, R. Napier, J. Kennedy-Moffat
Publication: Computers and Security, Volume 16, Number 7 - Date: 1997

The Ambitious Amateur vs. crypt(3)
Author(s): Kurt Hockenbury
Publication: - Date: 1997

Cost-effective Computer Security: Cognitive and Associative Passwords
Author(s): John Podd, Julie Bunnell, Ron Henderson
Publication: Proceedings of the 6th Australian Conference on Computer-Human Interaction (OZCHI '96) - Date: November 1996

User Verification Through Pointing Characteristics: An Exploration Examination
Author(s): Kate Barrelle, William Laverty, Ron Henderson, Jon Gough, Michael Wagner, Michael Hiron
Publication: International Journal of Human-Computer Studies, Volume 45, Issue 1 - Date: July 1996

A Simple Scheme to Make Password Based on One-way Functions Much Harder to Crack
Author(s): Udi Manber
Publication: Computers and Security, Volume 15 Number 2 - Date: 1996

A Study on the Attitude and Behavior of Computer Network Users Regarding Security Administration
Author(s): Y. Harada, K. Kuroki
Publication: Reports of National Research Institute of Police Science, 37 - Date: 1996

Constructing Difficult-To-Guess Passwords
Author(s): Charles Cresson Wood
Publication: Information Management & Computer Security, Volume 4, Number 1 - Date: 1996

Independent One-time Passwords
Author(s): A. D. Rubin
Publication: USENIX Computing Systems Volume 9, Number 1 - Date: 1996

An Efficient Password Authentication Scheme Based on a Unit Circle
Author(s): Horng-Twu Liaw, Chin-Laung Lei
Publication: Cryptologia, Volume XIX, Number 2 - Date: April 1995

Improving System Security via Proactive Password Checking
Author(s): Matt Bishop, Daniel V. Klein
Publication: Computers and Security, Volume 14, Number 3 - Date: 1995

A Remote Password Authentication Scheme Based Upon Elgamal's Signature Scheme
Author(s): Chin-Chen Chang, Wen-Yuan Liao
Publication: Computers & Security, Volume 13, Number 2 - Date: April 1994

A New Attack on Random Pronounceable Password Generators
Author(s): Ravi Ganesan, Chris Davies
Publication: Proceedings of the 17th National Computer Security Conference - Date: 1994

Pass-Sentence -- A New Approach to Computer Code
Author(s): Yishay Spector, Jacob Ginzberg
Publication: Computers and Security, Volume 13, Number 2 - Date: 1994

Automated Password Generator (APG)
Author(s): Unknown
Publication: Federal Information Processing Standards - Date: October 5 1993

A Comparison of Password Techniques for Multilevel Authentication Mechanisms
Author(s): Moshe Zviran, William J. Haga
Publication: The Computer Journal, Volume 36, Number 3 - Date: June 1993

A Note on the Use of Timestamps as Nonces
Author(s): B. Clifford Neuman, Stuart G. Stubblebine
Publication: Operating Systems Review: Volume 27, Number 2 - Date: April 1993

Anatomy of a Proactive Password Checker
Author(s): Matt Bishop
Publication: Proceedings of the 3rd UNIX Security Symposium - Date: September 1992

Observing Reusable Password Choices
Author(s): Eugene Spafford
Publication: Purdue Technical Report cSD-TR 92-049 - Date: July 31 1992

OPUS: Preventing Weak Password Choices
Author(s): Eugene Spafford
Publication: Computers & Security, Volume 11, Number 3 - Date: May 1992

A Password Authentication Scheme Based on Discrete Logarithms
Author(s): Tzong-Chen Wu, Chin-Chen Chang
Publication: International Journal of Computer Mathematics, Volume 41, Number 1-2 - Date: December 1991

Comparing Authentication Systems
Author(s): Matt Bishop
Publication: Proceedings of the 3rd Workshop on Computer Incident Handling - Date: August 1991

"Foiling the Cracker": A Survey of, and Improvements to, Password Security (2)
Author(s): Daniel V. Klein
Publication: Proceedings of the 14th DoE Computer Security Group - Date: May 1991

A Proactive Password Checker
Author(s): Matt Bishop
Publication: Proceedings of the 7th International Conference on Information Security / PCS-TR90-152 - Date: May 1991

Question-and-Answer Passwords: An Empirical Evaluation
Author(s): William J. Haga, Moshe Zviran
Publication: Information Systems, Volume 16, Number 3 - Date: 1991

A New Password Authentication Scheme
Author(s): Chin-Chen Chang, Ling-Hua Wu
Publication: Journal of Information Science and Engineering: Volume 6, Number 2 - Date: June 1990

"Foiling the Cracker": A Survey of, and Improvements to, Password Security
Author(s): Daniel V. Klein
Publication: Proceedings of the Unix Security Workshop II / 4th USENIX Security Workshop? - Date: 1990

A Matrix Key Distribution Scheme
Author(s): Li Gong, D. J. Wheeler
Publication: Journal of Cryptology: Volume 2, Number 2 - Date: 1990

Cognitive Passwords: The Key to Easy Access Control
Author(s): Moshe Zviran, William J. Haga
Publication: Journal of Computing, Number 36? - Date: 1990

Password Security In a Large Distributed Environment
Author(s): Michele D. Crabb
Publication: Proceedings of the Second USENIX UNIX Security Workshop - Date: 1990

A Logic of Authentication
Author(s): Michael Burrows, Martin Abadi, Roger M. Needham
Publication: Proceedings of the 12th ACM Symposium on Operating System Principles - Date: December 1989

A Simple Way of Improving the Login Security
Author(s): Khrosrow Dehnad
Publication: Computers and Security, Volume 8, Number 7 - Date: November 1989

A Survey of Password Mechanisms: Weaknesses and Potential Improvements, Part 1
Author(s): David L. Jobusch, Arthur E. Oldehoeft
Publication: Computers and Security, Volume 8, Number 7 - Date: November 1989

A Survey of Password Mechanisms: Weaknesses and Potential Improvements, Part 2
Author(s): David L. Jobusch, Arthur E. Oldehoeft
Publication: Computers and Security, Volume 8, Number 9 - Date: November 1989

Password Cracking: A Game of Wits.
Author(s): Don Seeley
Publication: Communications of the ACM, Volume 32, Issue 6 - Date: June 1989

A Study of Password Security
Author(s): Michael Luby, Charles Rackoff
Publication: Journal of Cryptology Volume 1, Number 3 - Date: 1989

Cognitive Passwords: From Theory to Practice
Author(s): William J. Haga, Moshe Zviran
Publication: Data Processing and Communications Security, Number 3? - Date: 1989

Passwords In Use In a University Time-Sharing Environment
Author(s): Bruce L. Riddle, Murray S. Miron, Judith A. Semo
Publication: Computers and Security, Volume 8, Number 7 - Date: 1989

A Framework for Password Selection
Author(s): Ana Marie De Alvare, E. Eugene Schultz, Jr.
Publication: UNIX Security Workshop Proceedings - Date: August 1988

Understanding the Use of Passwords
Author(s): B. Menkus
Publication: Computers and Security, Number 7? - Date: 1988

Authenticating Users by Word Association
Author(s): S. L. Smith
Publication: Computers and Security, Number 6? - Date: 1987

A Review of Methods of Personal Identity Verification
Author(s): W. L. Price
Publication: Technical Report DITC 73/86 - Date: July 1986

A Global Authentication Service Without Global Trust
Author(s): Andrew D. Birrell, Butler W. Lampson, Roger M. Needham, Michael D. Schroeder
Publication: Proceedings of the 1986 IEEE Symposium on Security and Privacy - Date: April 1986

Algorithmic Authentication of Identification
Author(s): Fred Cohen
Publication: Information Age, Volume 7, Number 1 - Date: February 1985

On Improvements to Password Security
Author(s): Kamaljit Singh
Publication: ACM SIGOPS Operating Systems Review - Date: January 1985

A Password Extension for Improved Human Factors
Author(s): Sigmund N. Porter
Publication: Computers and Security, Volume 1, Number 1 - Date: January 1982

Password Security: A Case Study
Author(s): Robert Morris Sr., Ken Thompson
Publication: Communications of the ACM, Volume 22, Issue 11 - Date: November 1979

Easy Entry: The Password Encryption Problem
Author(s): Jason Gait
Publication: ACM SIGOPS Operating Systems Review, Volume 12, Number 3 - Date: July 1978

A Random Word Generator for Pronounceable Passwords
Author(s): Morrie Gasser
Publication: MTR-3006, ESD-TR-75-97, AD-A017676 - Date: November 1975

A High Security Log-In Procedure
Author(s): George B. Purdy
Publication: Communications of the ACM, Volume 17, Number 8 - Date: August 1974

A Security-Enhanced Password Management Scheme Based on Needham's Scheme
Author(s): Jong-Hyeon Lee
Publication: - Date:





[Home] [About Us] [News] [Research]

Copyright © 2006 Password Research Institute