Android PIN Patterns: A how-to video
Following on from my Android PIN pattern post this video demo looks at some of the problems with PINs and PIN patterns.
We know that using a long PIN can make for a much more secure mobile device. With Android you can also draw a pattern, traced across the PIN. While that should make it quite easy to remember a nice long PIN it actually causes problems at the same time.
Ease of use
If you’re using a long PIN (and you should) the first issue is that remembering it can be difficult. The idea of drawing a pattern on your Android phone is that it’s better because it’s easier to remember.
One problem is that if for example you’re sat on a commuter train and drawing patterns it’s a lot easier for someone to shoulder surf that and work out what you’ve put in. It’s more complicated with a PIN number. There is a more detailed problem with the idea of PINs, and this is Common Usage. There was a paper written I believe by The Royal Holloway University that looked at the likelihood of someone to draw a particular pattern.
They showed that was a lot more chance that the pattern would start in a corner then move to the next adjacent number. The result of that is while you might have a fantastic six digit PIN that has potentially a million combinations, because of standard usage and the fact that you can’t jump around the nine number grid it make the entropy of the PIN much lower.
Good practice
So, if you are going to use a PIN pattern make sure you use numbers which are unusual and ones that don’t start in corners. Start in the middle maybe and try avoid easy straightforward patterns such as going round in a square.
The other major problem with PIN patterns is that you can’t use the same digit twice, which again seriously reduces the entropy.

How We Hacked Swann Cameras: Lessons for IoT Security

Hacking with Chromecast and Alexa

The Tapplock Bluetooth unlock attack

Z-Wave Z-Shave downgrade attack

A smart coffee machine

Disabling Wireless Alarms 1 – Simple Jamming

Disabling Wireless Alarms 3 – PIN Brute Force

Disabling Wireless Alarms 2 – Replay Attacks

Disabling Wireless Alarms 4 – Attacking A Brand New Alarm

Wireless Alarms – What To Look For In An Alarm

Hacking the Mitsubishi Outlander PHEV SUV

Exfiltrating data in ping packet padding: Video demo

Scraping Memory From Android Phones With JTAG: A how-to video

How to bruteforce the PIN on Android: Nexus 4 video demo

iPhone PIN Cracking: A video demonstration

FireWire Memory Attack: A how-to video

Hacking Android Through Accessibility Events: A how-to video

ADB PIN Crack

How to hack Tesco’s Android Hudl

Teensy USB Connect Back Hack Video

RFID Cloning With Proxmark

Bypassing Antivirus To Deliver Malware With Code Packers

Getting a divorce with iOS – Siri Bypass

iOS PIN Cracking Video

Keylogger Keyboard Hardware

Wireless Probe Snooping

Email Connect Back
