Ask / Submit
9

Relax security code minimum length [answered]

asked 2014-01-09 01:21:39 +0300

updated 2014-01-18 14:32:52 +0300

rainisto gravatar image

Now I have to type at least 5 digits correctly. Sounds easy, right? But I constantly use two smartphones (or even more), each has its own button sizes... Well, for me personally 4 digits code is pretty OK, but adding one more digit significantly increases miss rate. I propose to relax the requirement and allow 4 or even 3 digits. For security:

  • Warn the user about weak code (sample numbers about time required to brute force the code manually may give the impression), or
  • Make a delay after incorrect attempts. Start from half a second and double the interval every time.
edit retag flag offensive reopen delete

The question has been closed for the following reason "the question is answered, an answer was accepted" by JSEHV
close date 2016-02-08 15:16:04.605182

Comments

2

I agree, but I would like gesture-based device lock even better. Used it a lot with my Motorola Milestone running CyanogenMod custom rom.

hana ( 2014-01-09 03:09:25 +0300 )edit
1

Sure, other methods would be nice too. My suggestion is relatively easy to implement.

const ( 2014-01-09 12:27:21 +0300 )edit

1 Answer

Sort by » oldest newest most voted
4

answered 2014-01-18 14:39:52 +0300

rainisto gravatar image

If you want to protect against brute force you should enter atleast 8 digits lockcode.

Thanks for the feature request though, I'll take it under consideration.

edit flag offensive delete publish link more

Question tools

Follow
3 followers

Stats

Asked: 2014-01-09 01:21:39 +0300

Seen: 334 times

Last updated: Jan 18 '14