[Home]

PIN/SSN Inference Attack

Environment

• PIN inference experiment
• Extract 4-, 5- and 6-digit PINs from RockYou password database [link].
• For each PIN length, randomly select 100 PINs.
• SSN inference experiment
• Without SSN Randomization
• Select 2 states from each of the west, middle and east of the US.
• For each state, randomly select 3 of 3-digit area code.
• Randomly construct 100 valid SSNs for each state.
• With SSN Randomization
• Genearte 100 random SSN with any 3-digit area code except 000, 666 and 900-999.

Experiment Procedure

• PIN inference experiment
• Step 1. A user types each PIN separately on iPhone 11 Pro Max keypad.
• Step 2. Launch WINK and compute each PIN's entropy.
• SSN inference experiment
• Step 1. A user types each SSN separately using a standard keyboard numberpad.
• Step 2. Launch WINK and compute each SSN's entropy.

Results

• Figure 8 in the paper presents entropy distribution for PINs with different lengths.

• Figure 10 in the paper presents CDFs of SSN entropy for different states.

Download Links

• PIN CSI dataset
• [Download]
• SSN CSI dataset
• [Download]