Password Security

Sep 9, 2019

Work on tools and methods to improve password security. Some of our tools are available as open-source tools. See also the publications listed below.

Avatar
Alexandra Mendes
Assistant Professor

My research focuses on encouraging a wider adoption of software verification by creating tools and methods that hide the complexities of verifying software. Recently, I started work on usable security, in particular on the impact of formal verification on the use and adoption of formally verified security software products. Much of my most recent work overlaps with the area of software engineering. For more details, see selected publications and some of my projects. Follow me on Twitter or add me on LinkedIn.

Publications

Carolina Carreira, João F. Ferreira, Alexandra Mendes, Nicholas Christin (2021). Exploring Usable Security to Improve the Impact of Formal Verification: A Research Agenda. In AppFM 2021 published as a volume of EPTCS.

PDF Project

Carolina Carreira, João F. Ferreira, Alexandra Mendes (2021). Towards Improving the Usability of Password Managers. In INForum 2021.

PDF Project

David Pereira, João F. Ferreira, Alexandra Mendes (2020). Evaluating the Accuracy of Password Strength Meters using Off-The-Shelf Guessing Attacks. In ISSREW 2020 (RSDA 2020).

PDF Project

Saul Johnson, João F. Ferreira, Alexandra Mendes, Julien Cordry (2020). Skeptic: Automatic, Justified and Privacy-Preserving Password Composition Policy Selection. In AsiaCCS 2020. CORE A conference.

PDF Project

Saul Johnson, João F. Ferreira, Alexandra Mendes, Julien Cordry (2019). Lost in Disclosure: On The Inference of Password Composition Policies. In ISSREW 2019 (RSDA 2019).

PDF Project

João F. Ferreira, Saul Johnson, Alexandra Mendes, Phil Brooke (2017). Certified Password Quality: A Case Study Using Coq and Linux Pluggable Authentication Modules. In iFM 2017. CORE B conference.

PDF Project