USENIX Security '15 Paper #478 Reviews and Comments
===========================================================================
Paper #478 Ball and Chain: Hashing is Dead, Long Live the Password


Review #478A
===========================================================================

Overall merit
-------------
1. Serious problems. I will fight for this paper to be rejected.

Reviewer expertise
------------------
4. Expert

Novelty
-------
3. Incremental improvement

Paper summary
-------------
The paper tackles the problem of security breach of stored passwords.

Paper strengths
---------------
N/A

Paper weaknesses
----------------
N/A

Comments for author
-------------------
The proposed idea is not grounded with prior work (no references and related work section) and the paper does not provide any evalution of the proposed method. That said, unfortunately, this paper seems poorly targeted to USENIX Security.  USENIX Security has traditionally viewed itself as a systems-oriented security conference, looking at papers that advance the state of the art in secure system design *and* provide the evaluation of the design through scientific methods.