Sotabase
Home
Researchers
Career
·
Associate Professor
,
University of Maryland
2014–
·
Ph.D. in Electrical and Computer Engineering
,
Carnegie Mellon University
2008–2014
·
Bachelor's degree
,
University of Maryland
2000–2004
Publications
(155)
Guess Again (and Again and Again): Measuring Password Strength by Simulating Password-Cracking Algorithms
IEEE Symposium on Security and Privacy · 2012
505
cited
Of passwords and people: measuring the effect of password-composition policies
International Conference on Human Factors in Computing Systems · 2011
463
cited
Encountering stronger password requirements: user attitudes and behaviors
Symposium On Usable Privacy and Security · 2010
399
cited
How Does Your Password Measure Up? The Effect of Strength Meters on Password Creation
USENIX Security Symposium · 2012
352
cited
You Get Where You're Looking for: The Impact of Information Sources on Code Security
IEEE Symposium on Security and Privacy · 2016
317
cited
Measuring password guessability for an entire university
Conference on Computer and Communications Security · 2013
266
cited
Comparing the Usability of Cryptographic APIs
IEEE Symposium on Security and Privacy · 2017
256
cited
How Well Do My Results Generalize? Comparing Security and Privacy Survey Results from MTurk, Web, and Telephone Samples
IEEE Symposium on Security and Privacy · 2019
216
cited
Measuring Real-World Accuracies and Biases in Modeling Password Guessability
USENIX Security Symposium · 2015
194
cited
How I Learned to be Secure: a Census-Representative Survey of Security Advice Sources and Behavior
Conference on Computer and Communications Security · 2016
182
cited
Tag, you can see it!: using tags for access control in photo sharing
International Conference on Human Factors in Computing Systems · 2012
165
cited
Access Control for Home Data Sharing: Attitudes, Needs and Practices
International Conference on Human Factors in Computing Systems · 2010
162
cited
Can long passwords be secure and usable?
International Conference on Human Factors in Computing Systems · 2014
160
cited
Correct horse battery staple: exploring the usability of system-assigned passphrases
Symposium On Usable Privacy and Security · 2012
159
cited
Designing Password Policies for Strength and Usability
ACM Transactions on Privacy and Security · 2016
150
cited
You are Not Your Developer, Either: A Research Agenda for Usable Security and Privacy Research Beyond End Users
IEEE Cybersecurity Development · 2016
148
cited
Hackers vs. Testers: A Comparison of Software Vulnerability Discovery Processes
IEEE Symposium on Security and Privacy · 2018
146
cited
I Think They're Trying to Tell Me Something: Advice Sources and Selection for Digital Security
IEEE Symposium on Security and Privacy · 2016
146
cited
A Comprehensive Quality Evaluation of Security and Privacy Advice on the Web
USENIX Security Symposium · 2020
145
cited
Usability and Security of Text Passwords on Mobile Devices
International Conference on Human Factors in Computing Systems · 2016
122
cited
Show all 155 papers →
Sotabase