How to choose a PIN - assessment of dictionary methods
Lubica Stanekov\'a, Martin Stanek
TL;DR
This paper evaluates dictionary-based methods for choosing PINs, revealing their limitations in security and proposing approaches for creating memorable yet secure PINs.
Contribution
It provides an experimental assessment of dictionary methods for PIN selection and discusses strategies for generating memorable PINs for random numbers.
Findings
Dictionary methods have limited coverage of PIN space.
PIN entropy is often insufficient for security.
Proposed methods improve memorability without compromising security.
Abstract
Personal Identification Numbers (PINs) are commonly used as an authentication mechanism. An important security requirement is that PINs should be hard to guess for an attacker. On the other hand, remembering several random PINs can be difficult task for an individual. We evaluate several dictionary-based methods of choosing a PIN. We experimentally show that these methods are far from ideal with respect to expected covering of the PIN space and the entropy of PINs. We also discuss two methods for constructing easy to memorize PIN words for randomly chosen PINs.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsUser Authentication and Security Systems · Speech Recognition and Synthesis · Authorship Attribution and Profiling