M
Michelle L. Mazurek
Researcher at University of Maryland, College Park
Publications - 110
Citations - 5319
Michelle L. Mazurek is an academic researcher from University of Maryland, College Park. The author has contributed to research in topics: Password & Password strength. The author has an hindex of 29, co-authored 96 publications receiving 4194 citations. Previous affiliations of Michelle L. Mazurek include Tufts University & University of New Mexico.
Papers
More filters
Proceedings ArticleDOI
Guess Again (and Again and Again): Measuring Password Strength by Simulating Password-Cracking Algorithms
Patrick Gage Kelley,Saranga Komanduri,Michelle L. Mazurek,Richard Shay,Timothy Vidas,Lujo Bauer,Nicolas Christin,Lorrie Faith Cranor,Julio Lopez +8 more
TL;DR: An efficient distributed method is developed for calculating how effectively several heuristic password-guessing algorithms guess passwords, and the relationship between guess ability, as measured with password-cracking algorithms, and entropy estimates is investigated.
Proceedings ArticleDOI
Of passwords and people: measuring the effect of password-composition policies
Saranga Komanduri,Richard Shay,Patrick Gage Kelley,Michelle L. Mazurek,Lujo Bauer,Nicolas Christin,Lorrie Faith Cranor,Serge Egelman +7 more
TL;DR: A large-scale study investigates password strength, user behavior, and user sentiment across four password-composition policies, and describes the predictability of passwords by calculating their entropy, finding that a number of commonly held beliefs about password composition and strength are inaccurate.
Proceedings ArticleDOI
Encountering stronger password requirements: user attitudes and behaviors
Richard Shay,Saranga Komanduri,Patrick Gage Kelley,Pedro Giovanni Leon,Michelle L. Mazurek,Lujo Bauer,Nicolas Christin,Lorrie Faith Cranor +7 more
TL;DR: An entropy analysis is performed and it is shown that, although most of the users were annoyed by the need to create a complex password, they believe that they are now more secure and can be helpful in designing better password policies.
Proceedings Article
How does your password measure up? the effect of strength meters on password creation
Blase Ur,Patrick Gage Kelley,Saranga Komanduri,Joel Lee,Michael Maass,Michelle L. Mazurek,Timothy Passaro,Richard Shay,Timothy Vidas,Lujo Bauer,Nicolas Christin,Lorrie Faith Cranor +11 more
TL;DR: It was found that meters with a variety of visual appearances led users to create longer passwords, however, significant increases in resistance to a password-cracking algorithm were only achieved using meters that scored passwords stringently.
Proceedings ArticleDOI
You Get Where You're Looking for: The Impact of Information Sources on Code Security
TL;DR: Analyzing how the use of information resources impacts code security confirms that API documentation is secure but hard to use, while informal documentation such as Stack Overflow is more accessible but often leads to insecurity.