Password (English Wikipedia)

Shay, R.; Komanduri, S.; Kelley, P. G.; Leon, P. G.; Mazurek, M. L.; Bauer, L.; Cranor, L. F. (2010). "Encountering stronger password requirements: user attitudes and behaviors". Proceedings of the Sixth Symposium on Usable Privacy and Security. pp. 1–20. Retrieved 30 April 2025.

archive.today

Kok-Wah Lee "Methods and Systems to Create Big Memorizable Secrets and Their Applications" Patent US20110055585, WO2010010430. Filing date: 18 December 2008

arstechnica.com

Goodin, Dan (3 June 2019). "Microsoft says mandatory password changing is "ancient and obsolete"". Ars Technica. Retrieved 1 November 2022.

bbc.co.uk

news.bbc.co.uk

Jonathan Kent, Malaysia car thieves steal finger Archived 20 November 2010 at the Wayback Machine. BBC (31 March 2005)

bell-labs.com

cm.bell-labs.com

Morris, Robert & Thompson, Ken (1979). "Password Security: A Case History". Communications of the ACM. 22 (11): 594–597. CiteSeerX 10.1.1.135.2097. doi:10.1145/359168.359172. S2CID 207656012. Archived from the original on 22 March 2003.

books.google.com

Mark Bando (2007). 101st Airborne: The Screaming Eagles in World War II. Mbi Publishing Company. ISBN 978-0-7603-2984-9. Archived from the original on 2 June 2013. Retrieved 20 May 2012.
Michael E. Whitman; Herbert J. Mattord (2014). Principles of Information Security. Cengage Learning. p. 162. ISBN 978-1-305-17673-7.
Lewis, Dave (2011). Ctrl-Alt-Delete. Lulu.com. p. 17. ISBN 978-1471019111. Retrieved 10 July 2015.

broadcom.com

community.broadcom.com

"Ten Windows Password Myths" : "NT dialog boxes ... limited passwords to a maximum of 14 characters"
"Ten Windows Password Myths" : Myth #7. You Should Never Write Down Your Password

bugcharmer.blogspot.com

The Bug Charmer: Passwords Matter Archived 2 November 2013 at the Wayback Machine. Bugcharmer.blogspot.com (20 June 2012). Retrieved on 2013-07-30.
Alexander, Steven. (20 June 2012) The Bug Charmer: How long should passwords be? Archived 20 September 2012 at the Wayback Machine. Bugcharmer.blogspot.com. Retrieved on 2013-07-30.

burtleburtle.net

Bob Jenkins (11 January 2013). "Choosing Random Passwords". Archived from the original on 18 September 2010.

businesstoday.in

"No password for Microsoft Account: What does passwordless authentication mean?". Business Today. Retrieved 12 April 2022.

cam.ac.uk

cl.cam.ac.uk

"The Memorability and Security of Passwords – Some Empirical Results" Archived 19 February 2011 at the Wayback Machine (pdf)
"your password ... in a secure place, such as the back of your wallet or purse."
Bonneau, Joseph; Herley, Cormac; Oorschot, Paul C. van; Stajano, Frank (2012). "The Quest to Replace Passwords: A Framework for Comparative Evaluation of Web Authentication Schemes". Technical Report - University of Cambridge. Computer Laboratory. Cambridge, UK: University of Cambridge Computer Laboratory. doi:10.48456/tr-817. ISSN 1476-2986. Retrieved 22 March 2019.

cert.org

"CERT IN-98.03". 16 July 1998. Retrieved 9 September 2009.

cesg.gov.uk

"The problems with forcing regular password expiry". IA Matters. CESG: the Information Security Arm of GCHQ. 15 April 2016. Archived from the original on 17 August 2016. Retrieved 5 August 2016.

cnet.com

news.cnet.com

Kotadia, Munir (23 May 2005) Microsoft security guru: Jot down your passwords. News.cnet.com. Retrieved on 2012-05-20.
"Gates predicts death of the password". CNET. 25 February 2004. Archived from the original on 2 April 2015. Retrieved 14 March 2015.

cnet.com

"Google security exec: 'Passwords are dead'". CNET. 25 February 2004. Archived from the original on 2 April 2015. Retrieved 14 March 2015.

codehaus.org

jira.codehaus.org

"You must provide a password between 1 and 8 characters in length". Jira.codehaus.org. Retrieved on 20 May 2012. Archived 21 May 2015 at the Wayback Machine

computer.org

"Authentciation at Scale". IEEE. 25 January 2013. Archived from the original on 2 April 2015. Retrieved 12 March 2015.

computerworld.com

"Russian credential theft shows why the password is dead". Computer World. 14 August 2014. Archived from the original on 2 April 2015. Retrieved 14 March 2015.

cornell.edu

rist.tech.cornell.edu

Morris, R.; Thompson, K. (1979). "Password Security: A Case History" (PDF). Communications of the ACM. 22 (11): 594–597. Retrieved 30 April 2025.

cryptosmith.com

"The Strong Password Dilemma" Archived 18 July 2010 at the Wayback Machine by Richard E. Smith: "we can summarize classical password selection rules as follows: The password must be impossible to remember and never written down."

darkreading.com

Ericka Chickowski (3 November 2010). "Images Could Change the Authentication Picture". Dark Reading. Archived from the original on 10 November 2010.

doi.org

Ranjan, Pratik; Om, Hari (6 May 2016). "An Efficient Remote User Password Authentication Scheme based on Rabin's Cryptosystem". Wireless Personal Communications. 90 (1): 217–244. doi:10.1007/s11277-016-3342-5. ISSN 0929-6212. S2CID 21912076.
Grassi, Paul A.; Garcia, Michael E.; Fenton, James L. (June 2017). "NIST Special Publication 800-63-3: Digital Identity Guidelines". National Institute of Standards and Technology (NIST). doi:10.6028/NIST.SP.800-63-3. Retrieved 17 May 2019. {{cite journal}}: Cite journal requires |journal= (help)
Morris, Robert & Thompson, Ken (1979). "Password Security: A Case History". Communications of the ACM. 22 (11): 594–597. CiteSeerX 10.1.1.135.2097. doi:10.1145/359168.359172. S2CID 207656012. Archived from the original on 22 March 2003.
P. Tsokkis and E. Stavrou, "A password generator tool to increase users' awareness on bad password construction strategies", 2018 International Symposium on Networks, Computers and Communications (ISNCC), Rome, 2018, pp. 1-5, doi:10.1109/ISNCC.2018.8531061.
T Matsumoto. H Matsumotot; K Yamada & S Hoshino (2002). Van Renesse, Rudolf L. (ed.). "Impact of artificial 'Gummy' Fingers on Fingerprint Systems". Proc SPIE. Optical Security and Counterfeit Deterrence Techniques IV. 4677: 275. Bibcode:2002SPIE.4677..275M. doi:10.1117/12.462719. S2CID 16897825.
Bonneau, Joseph; Herley, Cormac; Oorschot, Paul C. van; Stajano, Frank (2012). "The Quest to Replace Passwords: A Framework for Comparative Evaluation of Web Authentication Schemes". Technical Report - University of Cambridge. Computer Laboratory. Cambridge, UK: University of Cambridge Computer Laboratory. doi:10.48456/tr-817. ISSN 1476-2986. Retrieved 22 March 2019.
Bonneau, Joseph; Herley, Cormac; Oorschot, Paul C. van; Stajano, Frank (2012). "The Quest to Replace Passwords: A Framework for Comparative Evaluation of Web Authentication Schemes". 2012 IEEE Symposium on Security and Privacy. 2012 IEEE Symposium on Security and Privacy. San Francisco, CA. pp. 553–567. doi:10.1109/SP.2012.44. ISBN 978-1-4673-1244-8.

espacenet.com

worldwide.espacenet.com

US patent 8046827

fedscoop.com

"NSTIC head Jeremy Grant wants to kill passwords". FedScoop. 14 September 2014. Archived from the original on 18 March 2015. Retrieved 14 March 2015.

fidoalliance.org

"Specifications Overview". FIDO Alliance. 25 February 2014. Archived from the original on 15 March 2015. Retrieved 15 March 2015.

forbes.com

Joseph Steinberg (12 November 2014). "Forbes: Why You Should Ignore Everything You Have Been Told About Choosing Passwords". Forbes. Archived from the original on 12 November 2014. Retrieved 12 November 2014.

fortune.com

Roberts, Jeff John (11 May 2017). "Experts Say We Can Finally Ditch Those Stupid Password Rules". Fortune. Archived from the original on 28 June 2018.

gizmodo.com

Biddle, Sam (11 July 2011). "Anonymous Leaks 90,000 Military Email Accounts in Latest Antisec Attack". Gizmodo. Archived from the original on 14 July 2017.

harvard.edu

ui.adsabs.harvard.edu

T Matsumoto. H Matsumotot; K Yamada & S Hoshino (2002). Van Renesse, Rudolf L. (ed.). "Impact of artificial 'Gummy' Fingers on Fingerprint Systems". Proc SPIE. Optical Security and Counterfeit Deterrence Techniques IV. 4677: 275. Bibcode:2002SPIE.4677..275M. doi:10.1117/12.462719. S2CID 16897825.

iacr.org

eprint.iacr.org

Cryptology ePrint Archive: Report 2005/434 Archived 14 June 2006 at the Wayback Machine. eprint.iacr.org. Retrieved on 20 May 2012.

ibm.com

www-03.ibm.com

"IBM Reveals Five Innovations That Will Change Our Lives within Five Years". IBM. 19 December 2011. Archived from the original on 17 March 2015. Retrieved 14 March 2015.

imperva.com

"Consumer Password Worst Practices (pdf)" (PDF). Archived (PDF) from the original on 28 July 2011.

blog.imperva.com

"Military Password Analysis". 12 July 2011. Archived from the original on 15 July 2011.

itpro.co.uk

"The top 12 password-cracking techniques used by hackers". IT PRO. 14 October 2019. Retrieved 18 July 2022.

kiplinger.com

Redding, David E.; Features, AEP published in (19 April 2019). "Your Estate Could Have a Serious Password Problem". Kiplinger.com. Retrieved 17 August 2024.

lyquix.com

Lyquix Blog: Do We Need to Hide Passwords? Archived 25 April 2012 at the Wayback Machine. Lyquix.com. Retrieved on 20 May 2012.

macworld.com

Fleishman, Glenn (24 November 2015). "Write your passwords down to improve safety — A counter-intuitive notion leaves you less vulnerable to remote attack, not more". MacWorld. Retrieved 28 April 2021.

marketwire.com

"Confident Technologies Delivers Image-Based, Multifactor Authentication to Strengthen Passwords on Public-Facing Websites". 28 October 2010. Archived from the original on 7 November 2010.

mcpmag.com

Butler, Rick A. (21 December 2004) Face in the Crowd Archived 27 June 2006 at the Wayback Machine. mcpmag.com. Retrieved on 2012-05-20.

microsoft.com

research.microsoft.com

Florencio et al., An Administrator's Guide to Internet Password Research Archived 14 February 2015 at the Wayback Machine. (pdf) Retrieved on 14 March 2015.
"The Quest to Replace Passwords (pdf)" (PDF). IEEE. 15 May 2012. Archived (PDF) from the original on 19 March 2015. Retrieved 11 March 2015.
"A Research Agenda Acknowledging the Persistence of Passwords". IEEE Security&Privacy. January 2012. Archived from the original on 20 June 2015. Retrieved 20 June 2015.

support.microsoft.com

How to prevent Windows from storing a LAN manager hash of your password in Active Directory and local SAM databases Archived 9 May 2006 at the Wayback Machine. support.microsoft.com (3 December 2007). Retrieved on 2012-05-20.

modernlifeisrubbish.co.uk

Stuart Brown "Top ten passwords used in the United Kingdom". Archived from the original on 8 November 2006. Retrieved 14 August 2007.. Modernlifeisrubbish.co.uk (26 May 2006). Retrieved on 2012-05-20.

ncl.ac.uk

homepages.cs.ncl.ac.uk

The Memorability and Security of Passwords Archived 14 April 2012 at the Wayback Machine (pdf). ncl.ac.uk. Retrieved on 20 May 2012.

nist.gov

csrc.nist.gov

"authentication protocol". Computer Security Resource Center (NIST). Archived from the original on 17 May 2019. Retrieved 17 May 2019.
"Passphrase". Computer Security Resource Center (NIST). Retrieved 17 May 2019.

pages.nist.gov

Grassi, Paul A.; Garcia, Michael E.; Fenton, James L. (June 2017). "NIST Special Publication 800-63-3: Digital Identity Guidelines". National Institute of Standards and Technology (NIST). doi:10.6028/NIST.SP.800-63-3. Retrieved 17 May 2019. {{cite journal}}: Cite journal requires |journal= (help)

nytimes.com

Vance, Ashlee (10 January 2010). "If Your Password Is 123456, Just Make It HackMe". The New York Times. Archived from the original on 11 February 2017.
Urbina, Ian; Davis, Leslye (23 November 2014). "The Secret Life of Passwords". The New York Times. Archived from the original on 28 November 2014.

patents.google.com

Kok-Wah Lee "Methods and Systems to Create Big Memorizable Secrets and Their Applications" Patent US20110055585, WO2010010430. Filing date: 18 December 2008

pcmag.com

"How to Create a Random Password Generator". PCMAG. Retrieved 5 September 2021.
Seltzer, Larry. (9 February 2010) "American Express: Strong Credit, Weak Passwords" Archived 12 July 2017 at the Wayback Machine. Pcmag.com. Retrieved on 2012-05-20.

pcworld.com

Thomas, Keir (10 February 2011). "Password Reuse Is All Too Common, Research Shows". PC World. Archived from the original on 12 August 2014. Retrieved 10 August 2014.

psu.edu

citeseerx.ist.psu.edu

Morris, Robert; Thompson, Ken (3 April 1978). "Password Security: A Case History". Bell Laboratories. CiteSeerX 10.1.1.128.1635.
Morris, Robert & Thompson, Ken (1979). "Password Security: A Case History". Communications of the ACM. 22 (11): 594–597. CiteSeerX 10.1.1.135.2097. doi:10.1145/359168.359172. S2CID 207656012. Archived from the original on 22 March 2003.

pythonhosted.org

"passlib.hash - Password Hashing Schemes" Archived 21 July 2013 at the Wayback Machine.

sans.org

Kristen Ranta-Haikal Wilson (9 March 2020). "The Debate Around Password Rotation Policies". SANS Institute. Retrieved 31 October 2022.

schneier.com

Schneier on Security discussion on changing passwords Archived 30 December 2010 at the Wayback Machine. Schneier.com. Retrieved on 20 May 2012.
Bruce Schneier : Crypto-Gram Newsletter Archived 15 November 2011 at the Wayback Machine 15 May 2001
Schneier, Real-World Passwords Archived 23 September 2008 at the Wayback Machine. Schneier.com. Retrieved on 20 May 2012.

securitybrief.co.nz

Williams, Shannon (21 October 2020). "Average person has 100 passwords - study". SecurityBrief New Zealand. NordPass. Retrieved 28 April 2021.

semanticscholar.org

api.semanticscholar.org

Ranjan, Pratik; Om, Hari (6 May 2016). "An Efficient Remote User Password Authentication Scheme based on Rabin's Cryptosystem". Wireless Personal Communications. 90 (1): 217–244. doi:10.1007/s11277-016-3342-5. ISSN 0929-6212. S2CID 21912076.
Morris, Robert & Thompson, Ken (1979). "Password Security: A Case History". Communications of the ACM. 22 (11): 594–597. CiteSeerX 10.1.1.135.2097. doi:10.1145/359168.359172. S2CID 207656012. Archived from the original on 22 March 2003.
T Matsumoto. H Matsumotot; K Yamada & S Hoshino (2002). Van Renesse, Rudolf L. (ed.). "Impact of artificial 'Gummy' Fingers on Fingerprint Systems". Proc SPIE. Optical Security and Counterfeit Deterrence Techniques IV. 4677: 275. Bibcode:2002SPIE.4677..275M. doi:10.1117/12.462719. S2CID 16897825.

sleuthsayers.org

Lundin, Leigh (11 August 2013). "PINs and Passwords, Part 2". Passwords. Orlando: SleuthSayers.

sophos.com

nakedsecurity.sophos.com

Wisniewski, Chester (18 August 2016). "NIST's new password rules – what you need to know". Naked Security. Archived from the original on 28 June 2018.

springer.com

link.springer.com

Ranjan, Pratik; Om, Hari (6 May 2016). "An Efficient Remote User Password Authentication Scheme based on Rabin's Cryptosystem". Wireless Personal Communications. 90 (1): 217–244. doi:10.1007/s11277-016-3342-5. ISSN 0929-6212. S2CID 21912076.

std.com

world.std.com

"To Capitalize or Not to Capitalize?" Archived 17 February 2009 at the Wayback Machine. World.std.com. Retrieved on 20 May 2012.
"Should I write down my passphrase?" Archived 17 February 2009 at the Wayback Machine. World.std.com. Retrieved on 20 May 2012.

techlicious.com

"Why You Should Lie When Setting Up Password Security Questions". Techlicious. 8 March 2013. Archived from the original on 23 October 2013. Retrieved 16 October 2013.

techtarget.com

searchsecurity.techtarget.com

graphical password or graphical user authentication (GUA) Archived 21 February 2009 at the Wayback Machine. searchsecurity.techtarget.com. Retrieved on 20 May 2012.

theguardian.com

Schofield, Jack (10 March 2003). "Roger Needham". The Guardian.

theregister.co.uk

Pauli, Darren (16 July 2014). "Microsoft: You NEED bad passwords and should re-use them a lot". The Register. Archived from the original on 12 August 2014. Retrieved 10 August 2014.
"NATO site hacked". The Register. 24 June 2011. Archived from the original on 29 June 2011. Retrieved 24 July 2011.

thireus.com

blog.thireus.com

Cracking Story – How I Cracked Over 122 Million SHA1 and MD5 Hashed Passwords « Thireus' Bl0g Archived 30 August 2012 at the Wayback Machine. Blog.thireus.com (29 August 2012). Retrieved on 2013-07-30.

time.com

techland.time.com

Techlicious / Fox Van Allen @techlicious (8 August 2013). "Google Reveals the 10 Worst Password Ideas". Time. Archived from the original on 22 October 2013. Retrieved 16 October 2013.

trendmicro.com

"2012 Linkedin Breach had 117 Million Emails and Passwords Stolen, Not 6.5M - Security News". www.trendmicro.com. 18 May 2016. Retrieved 11 October 2023.

troyhunt.com

Hunt, Troy (26 July 2017). "Passwords Evolved: Authentication Guidance for the Modern Era". Retrieved 22 March 2019.

uio.no

folk.uio.no

AlFayyadh, Bander; Thorsheim, Per; Jøsang, Audun; Klevjer, Henning. "Improving Usability of Password Management with Standardized Password Policies" (PDF). Archived (PDF) from the original on 20 June 2013. Retrieved 12 October 2012.

usenix.org

Password Protection for Modern Operating Systems Archived 11 March 2016 at the Wayback Machine (pdf). Usenix.org. Retrieved on 20 May 2012.

waelchatila.com

Using AJAX for Image Passwords – AJAX Security Part 1 of 3 Archived 16 June 2006 at the Wayback Machine. waelchatila.com (18 September 2005). Retrieved on 2012-05-20.

web.archive.org

"authentication protocol". Computer Security Resource Center (NIST). Archived from the original on 17 May 2019. Retrieved 17 May 2019.
Polybius on the Roman Military Archived 2008-02-07 at the Wayback Machine. Ancienthistory.about.com (2012-04-13). Retrieved on 2012-05-20.
Mark Bando (2007). 101st Airborne: The Screaming Eagles in World War II. Mbi Publishing Company. ISBN 978-0-7603-2984-9. Archived from the original on 2 June 2013. Retrieved 20 May 2012.
Vance, Ashlee (10 January 2010). "If Your Password Is 123456, Just Make It HackMe". The New York Times. Archived from the original on 11 February 2017.
"Managing Network Security". Archived from the original on 2 March 2008. Retrieved 31 March 2009.{{cite web}}: CS1 maint: bot: original URL status unknown (link). Fred Cohen and Associates. All.net. Retrieved on 20 May 2012.
The Memorability and Security of Passwords Archived 14 April 2012 at the Wayback Machine (pdf). ncl.ac.uk. Retrieved on 20 May 2012.
Techlicious / Fox Van Allen @techlicious (8 August 2013). "Google Reveals the 10 Worst Password Ideas". Time. Archived from the original on 22 October 2013. Retrieved 16 October 2013.
Lyquix Blog: Do We Need to Hide Passwords? Archived 25 April 2012 at the Wayback Machine. Lyquix.com. Retrieved on 20 May 2012.
Jonathan Kent, Malaysia car thieves steal finger Archived 20 November 2010 at the Wayback Machine. BBC (31 March 2005)
Stuart Brown "Top ten passwords used in the United Kingdom". Archived from the original on 8 November 2006. Retrieved 14 August 2007.. Modernlifeisrubbish.co.uk (26 May 2006). Retrieved on 2012-05-20.
The Bug Charmer: Passwords Matter Archived 2 November 2013 at the Wayback Machine. Bugcharmer.blogspot.com (20 June 2012). Retrieved on 2013-07-30.
Alexander, Steven. (20 June 2012) The Bug Charmer: How long should passwords be? Archived 20 September 2012 at the Wayback Machine. Bugcharmer.blogspot.com. Retrieved on 2013-07-30.
"passlib.hash - Password Hashing Schemes" Archived 21 July 2013 at the Wayback Machine.
Florencio et al., An Administrator's Guide to Internet Password Research Archived 14 February 2015 at the Wayback Machine. (pdf) Retrieved on 14 March 2015.
Cracking Story – How I Cracked Over 122 Million SHA1 and MD5 Hashed Passwords « Thireus' Bl0g Archived 30 August 2012 at the Wayback Machine. Blog.thireus.com (29 August 2012). Retrieved on 2013-07-30.
Morris, Robert & Thompson, Ken (1979). "Password Security: A Case History". Communications of the ACM. 22 (11): 594–597. CiteSeerX 10.1.1.135.2097. doi:10.1145/359168.359172. S2CID 207656012. Archived from the original on 22 March 2003.
Password Protection for Modern Operating Systems Archived 11 March 2016 at the Wayback Machine (pdf). Usenix.org. Retrieved on 20 May 2012.
How to prevent Windows from storing a LAN manager hash of your password in Active Directory and local SAM databases Archived 9 May 2006 at the Wayback Machine. support.microsoft.com (3 December 2007). Retrieved on 2012-05-20.
"Why You Should Lie When Setting Up Password Security Questions". Techlicious. 8 March 2013. Archived from the original on 23 October 2013. Retrieved 16 October 2013.
Joseph Steinberg (12 November 2014). "Forbes: Why You Should Ignore Everything You Have Been Told About Choosing Passwords". Forbes. Archived from the original on 12 November 2014. Retrieved 12 November 2014.
"The problems with forcing regular password expiry". IA Matters. CESG: the Information Security Arm of GCHQ. 15 April 2016. Archived from the original on 17 August 2016. Retrieved 5 August 2016.
Schneier on Security discussion on changing passwords Archived 30 December 2010 at the Wayback Machine. Schneier.com. Retrieved on 20 May 2012.
Seltzer, Larry. (9 February 2010) "American Express: Strong Credit, Weak Passwords" Archived 12 July 2017 at the Wayback Machine. Pcmag.com. Retrieved on 2012-05-20.
"You must provide a password between 1 and 8 characters in length". Jira.codehaus.org. Retrieved on 20 May 2012. Archived 21 May 2015 at the Wayback Machine
"To Capitalize or Not to Capitalize?" Archived 17 February 2009 at the Wayback Machine. World.std.com. Retrieved on 20 May 2012.
Thomas, Keir (10 February 2011). "Password Reuse Is All Too Common, Research Shows". PC World. Archived from the original on 12 August 2014. Retrieved 10 August 2014.
Pauli, Darren (16 July 2014). "Microsoft: You NEED bad passwords and should re-use them a lot". The Register. Archived from the original on 12 August 2014. Retrieved 10 August 2014.
Bruce Schneier : Crypto-Gram Newsletter Archived 15 November 2011 at the Wayback Machine 15 May 2001
"The Strong Password Dilemma" Archived 18 July 2010 at the Wayback Machine by Richard E. Smith: "we can summarize classical password selection rules as follows: The password must be impossible to remember and never written down."
Bob Jenkins (11 January 2013). "Choosing Random Passwords". Archived from the original on 18 September 2010.
"The Memorability and Security of Passwords – Some Empirical Results" Archived 19 February 2011 at the Wayback Machine (pdf)
"your password ... in a secure place, such as the back of your wallet or purse."
"Should I write down my passphrase?" Archived 17 February 2009 at the Wayback Machine. World.std.com. Retrieved on 20 May 2012.
Two-factor authentication Archived 18 June 2016 at the Wayback Machine
AlFayyadh, Bander; Thorsheim, Per; Jøsang, Audun; Klevjer, Henning. "Improving Usability of Password Management with Standardized Password Policies" (PDF). Archived (PDF) from the original on 20 June 2013. Retrieved 12 October 2012.
Tung, Liam (9 August 2017). "Hate silly password rules? So does the guy who created them". ZDNet. Archived from the original on 29 March 2018.
McMillan, Robert (7 August 2017). "The Man Who Wrote Those Password Rules Has a New Tip: N3v$r M1^d!". The Wall Street Journal. Archived from the original on 9 August 2017.
Roberts, Jeff John (11 May 2017). "Experts Say We Can Finally Ditch Those Stupid Password Rules". Fortune. Archived from the original on 28 June 2018.
Wisniewski, Chester (18 August 2016). "NIST's new password rules – what you need to know". Naked Security. Archived from the original on 28 June 2018.
"Password". Archived from the original on 23 April 2007. Retrieved 20 May 2012.{{cite web}}: CS1 maint: bot: original URL status unknown (link). cs.columbia.edu
Schneier, Real-World Passwords Archived 23 September 2008 at the Wayback Machine. Schneier.com. Retrieved on 20 May 2012.
MySpace Passwords Aren't So Dumb Archived 29 March 2014 at the Wayback Machine. Wired.com (27 October 2006). Retrieved on 2012-05-20.
Urbina, Ian; Davis, Leslye (23 November 2014). "The Secret Life of Passwords". The New York Times. Archived from the original on 28 November 2014.
"Consumer Password Worst Practices (pdf)" (PDF). Archived (PDF) from the original on 28 July 2011.
"NATO site hacked". The Register. 24 June 2011. Archived from the original on 29 June 2011. Retrieved 24 July 2011.
Biddle, Sam (11 July 2011). "Anonymous Leaks 90,000 Military Email Accounts in Latest Antisec Attack". Gizmodo. Archived from the original on 14 July 2017.
"Military Password Analysis". 12 July 2011. Archived from the original on 15 July 2011.
"The Quest to Replace Passwords (pdf)" (PDF). IEEE. 15 May 2012. Archived (PDF) from the original on 19 March 2015. Retrieved 11 March 2015.
"Gates predicts death of the password". CNET. 25 February 2004. Archived from the original on 2 April 2015. Retrieved 14 March 2015.
Cryptology ePrint Archive: Report 2005/434 Archived 14 June 2006 at the Wayback Machine. eprint.iacr.org. Retrieved on 20 May 2012.
Using AJAX for Image Passwords – AJAX Security Part 1 of 3 Archived 16 June 2006 at the Wayback Machine. waelchatila.com (18 September 2005). Retrieved on 2012-05-20.
Butler, Rick A. (21 December 2004) Face in the Crowd Archived 27 June 2006 at the Wayback Machine. mcpmag.com. Retrieved on 2012-05-20.
graphical password or graphical user authentication (GUA) Archived 21 February 2009 at the Wayback Machine. searchsecurity.techtarget.com. Retrieved on 20 May 2012.
Ericka Chickowski (3 November 2010). "Images Could Change the Authentication Picture". Dark Reading. Archived from the original on 10 November 2010.
"Confident Technologies Delivers Image-Based, Multifactor Authentication to Strengthen Passwords on Public-Facing Websites". 28 October 2010. Archived from the original on 7 November 2010.
User Manual for 2-Dimensional Key (2D Key) Input Method and System Archived 18 July 2011 at the Wayback Machine. xpreeli.com. (8 September 2008) . Retrieved on 2012-05-20.
"IBM Reveals Five Innovations That Will Change Our Lives within Five Years". IBM. 19 December 2011. Archived from the original on 17 March 2015. Retrieved 14 March 2015.
Honan, Mat (15 May 2012). "Kill the Password: Why a String of Characters Can't Protect Us Anymore". Wired. Archived from the original on 16 March 2015. Retrieved 14 March 2015.
"Google security exec: 'Passwords are dead'". CNET. 25 February 2004. Archived from the original on 2 April 2015. Retrieved 14 March 2015.
"Authentciation at Scale". IEEE. 25 January 2013. Archived from the original on 2 April 2015. Retrieved 12 March 2015.
Mims, Christopher (14 July 2014). "The Password Is Finally Dying. Here's Mine". The Wall Street Journal. Archived from the original on 13 March 2015. Retrieved 14 March 2015.
"Russian credential theft shows why the password is dead". Computer World. 14 August 2014. Archived from the original on 2 April 2015. Retrieved 14 March 2015.
"NSTIC head Jeremy Grant wants to kill passwords". FedScoop. 14 September 2014. Archived from the original on 18 March 2015. Retrieved 14 March 2015.
"Specifications Overview". FIDO Alliance. 25 February 2014. Archived from the original on 15 March 2015. Retrieved 15 March 2015.
"A Research Agenda Acknowledging the Persistence of Passwords". IEEE Security&Privacy. January 2012. Archived from the original on 20 June 2015. Retrieved 20 June 2015.

wired.com

McMillan, Robert (27 January 2012). "The World's First Computer Password? It Was Useless Too". Wired magazine. Retrieved 22 March 2019.
MySpace Passwords Aren't So Dumb Archived 29 March 2014 at the Wayback Machine. Wired.com (27 October 2006). Retrieved on 2012-05-20.
Honan, Mat (15 May 2012). "Kill the Password: Why a String of Characters Can't Protect Us Anymore". Wired. Archived from the original on 16 March 2015. Retrieved 14 March 2015.

worldcat.org

search.worldcat.org

Ranjan, Pratik; Om, Hari (6 May 2016). "An Efficient Remote User Password Authentication Scheme based on Rabin's Cryptosystem". Wireless Personal Communications. 90 (1): 217–244. doi:10.1007/s11277-016-3342-5. ISSN 0929-6212. S2CID 21912076.
Bonneau, Joseph; Herley, Cormac; Oorschot, Paul C. van; Stajano, Frank (2012). "The Quest to Replace Passwords: A Framework for Comparative Evaluation of Web Authentication Schemes". Technical Report - University of Cambridge. Computer Laboratory. Cambridge, UK: University of Cambridge Computer Laboratory. doi:10.48456/tr-817. ISSN 1476-2986. Retrieved 22 March 2019.

wsj.com

McMillan, Robert (7 August 2017). "The Man Who Wrote Those Password Rules Has a New Tip: N3v$r M1^d!". The Wall Street Journal. Archived from the original on 9 August 2017.
Mims, Christopher (14 July 2014). "The Password Is Finally Dying. Here's Mine". The Wall Street Journal. Archived from the original on 13 March 2015. Retrieved 14 March 2015.

xpreeli.com

User Manual for 2-Dimensional Key (2D Key) Input Method and System Archived 18 July 2011 at the Wayback Machine. xpreeli.com. (8 September 2008) . Retrieved on 2012-05-20.

yahoo.com

Two-factor authentication Archived 18 June 2016 at the Wayback Machine

zdnet.com

Tung, Liam (9 August 2017). "Hate silly password rules? So does the guy who created them". ZDNet. Archived from the original on 29 March 2018.
Kotadia, Munir (25 February 2004). "Gates predicts death of the password". ZDNet. Retrieved 8 May 2019.