Explore a comprehensive analysis of smartphone unlock PIN security in this 15-minute IEEE conference talk. Delve into the first extensive study comparing 4- and 6-digit PINs, examining their effectiveness against throttled attackers. Investigate the impact of blacklists on PIN selection and security, including those currently used by iOS. Discover surprising findings about the minimal security increase offered by 6-digit PINs and the limited benefits of small blacklists. Learn about the optimal balance between usability and security in PIN selection, and gain valuable insights into improving smartphone unlock security measures.
Overview
Syllabus
Intro
Overview
Why PINS?
Who uses PINS?
What we know about PINS
Treatments
User Study
Attacker Model
Research Questions
RQ1: 4- vs. 6-digit PINS
Different Blacklist Sizes
Balancing Security and Usability
Takeaways
Taught by
IEEE Symposium on Security and Privacy