Guess again (and again and again): Measuring password strength by simulating password-cracking algorithms. (2012)

by P G Kelley, S Komanduri, M L Mazurek, R Shay, T Vidas, L Bauer, N Christin, L F Cranor, J Lopez
Venue:In Proc. IEEE SP