@misc{JR13,
    author =    { Ari Juels and Ronald L. Rivest },
    title =     { Honeywords: Making Password-Cracking Detectable },
    date =      { 2013-05-02 },
    OPTyear =   { 2013 },
    OPTmonth =  { May 2, },
    urla =      { <a href="http://people.csail.mit.edu/rivest/honeywords/">Honeywords-Project-Page</a> },                  
    note =      { Unpublished draft. },
    asbtract = { We suggest a simple method for improving the security
                  of hashed passwords: the maintenance of additional
                  honeywords (false passwords) associated with each
                  user's account. An adversary who steals a file of
                  hashed passwords and inverts the hash function
                  cannot tell if he has found the password or a
                  honeyword. The attempted use of a honeyword for
                  login sets off an alarm. An auxiliary server (the
                  honeychecker) can distinguish the user password from
                  honeywords for the login routine, and will set off
                  an alarm if a honeyword is submitted. },
}