> Study of user-chosen 4- and 6-digit PINs collected on smartphones for device unlocking [...] a set of "easy to guess" PINs is disallowed during selection
So we are trying to avoid the now-common ones, which (aside from the obvious 4x one digit or 1234, etc.) will result in those becoming less common, and then to re-evaluate we have to submit one in a hundred PINs from all app users and sort of load balance who can use which PIN?
Or we just generate random ones and memorize them. If you care enough to install an app like this, this seems like the easiest solution such an app could offer: read a few bytes from /dev/urandom until there are 4 digits and display them on the screen.
So we are trying to avoid the now-common ones, which (aside from the obvious 4x one digit or 1234, etc.) will result in those becoming less common, and then to re-evaluate we have to submit one in a hundred PINs from all app users and sort of load balance who can use which PIN?
Or we just generate random ones and memorize them. If you care enough to install an app like this, this seems like the easiest solution such an app could offer: read a few bytes from /dev/urandom until there are 4 digits and display them on the screen.