BlackBerry (formerly Research In Motion) is planning to utilize password blacklists in its BlackBerry 10 mobile OS, meaning users will be unable to use certain passwords that have been deemed insecure. Do you think such a model strengthens security, or is it better to stick to rules concerning minimum password complexity? Would this model be useful to apply to other password policies?