Notebookcheck

Android pattern unlock is the easiest authentication method to snoop

The main weakness of pattern and PIN is the ability for those around you to obverve entry. (Source: Msporch/Pixabay)
The main weakness of pattern and PIN is the ability for those around you to obverve entry. (Source: Msporch/Pixabay)
A study by researchers from the University of Maryland and the US Naval Academy has been published showing that a six-spot pattern unlock is six times easier for snoopers to repeat after seeing once than a six-digit PIN.

Security researchers at the University of Maryland and the US Naval Academy have published the results of a study on PIN vs. pattern smartphone security lock methods, within the bounds of working out which is easier for those around you to snoop. Biometric methods are obviously more secure in this regard — ignoring the legal requirement to unlock the phone in some countries if asked by Police — but there are lots of phones which can’t use biometric either because of their age, their price segment, or for legal reasons (Sony in the USA).

When comparing PIN or pattern unlock many people prefer pattern for ease of entry. However, when it comes to people watching you unlock your phone, they have been shown to be less secure. In the study, the researchers found that at five to six feet a six-spot pattern could be repeated by 64 percent of people who saw it once, and by 80 percent of individuals who saw it twice. In comparison, a six-digit PIN could only be repeated by 11 percent of people after one viewing, and 27 percent of individuals after two viewings.

Pattern unlock has other weaknesses too. The limited randomness of human-generated patterns often only provides entropy equivalent to a three-digit PIN, and in an earlier study, researchers could accurately reconstruct part of the pattern based on screen smudges.

If you would prefer to stick to pattern unlock, then your best option is to turn off the feedback trail in security settings, since this halves the number of people who could repeat it after seeing it once (35 percent). Also, it could be a good idea to use an online pattern generator to give a more secure pattern.

Source(s)

static version load dynamic
Loading Comments
Comment on this article
Please share our article, every link counts!
> Notebook / Laptop Reviews and News > News > News Archive > Newsarchive 2017 09 > Android pattern unlock is the easiest authentication method to snoop
Craig Ward, 2017-09-23 (Update: 2017-09-23)
Craig Ward
Craig Ward - News Editor
I grew up in a family surrounded by technology, starting with my father loading up games for me on a Commodore 64, and later on a 486. In the late 90's and early 00's I started learning how to tinker with Windows, while also playing around with Linux distributions, both of which gave me an interest for learning how to make software do what you want it to do, and modifying settings that aren't normally user accessible. After this I started building my own computers, and tearing laptops apart, which gave me an insight into hardware and how it works in a complete system. Now keeping up with the latest in hardware and software news is a passion of mine.