Why ATM card pin only 4 digits but Email password has to be more complex
The main task of the internet is to provide services to the users. In today’s world of internet, we use it for various purposes. But there are many frauds related to the internet.With the growing number of hackers and scam artists online, passwords have become our first line of defense to safeguard everything from, our bank accounts, our social media profiles, and online services. Do you know Why ATM card pin only 4 digits but Email password has to be more complex
have you ever wondered why there’s such a difference between password types? For decades we have talked about how passwords should be at least 8 characters long and must be the combination of numbers and characters, but no one ever questions why a 4-digit PIN be enough for your ATM card or OTP? Well, there is a simple explanation really.
As far as for identity verification, lots of services prefer various levels of redundancy, which is great. This made the verification process little difficult to go through two levels of security just to purchase something from the online store, but this lessens the threat of being hacked and your money is much safer as before. However, there are three minimum identification elements. Among which two need to be satisfied at all times to achieve the maximum basic security.
Three identification factors are;
What you know,
What you have,
and what you are.
Concept behind: Why ATM card pin only 4 digits but Email password has to be more complex
Like your online banking system. Here, you need a login id and password to carry out transactions, as well as in most of the case an OTP sent to your phone number that is registered at your bank. That’s fulfilling the criteria of “what you know” clause here (your login id and password) as well as the what you have (the registered phone number). That’s decent security practice.
Also adequate is a 4-digit PIN when you visit the ATM. Here you know your PIN and you have your card, so here again two out of three-factor have met. That’s why just four digits pin number is sufficient.
Now take another example of your email account or social media account. Unless you have switched on the two-step authentication, all you want is your username and password. In this case, there’s no “what you have” element or factor, so the component that you “know” has to be safer. Hence, using a long password which must be set hard so it is too difficult to guess it out.
Now let discuss the “what you are” component. That’s simple, it’s anything that you inherence like your biometric identity, retina, iris. Your smartphone is the most appropriate example of this. Nowadays, most of the smartphones have an inbuilt fingerprint reader. Like if you lock your smartphone, you don’t need to type a password or don’t need to swipe a pattern, if you have your fingerprint registered you can unlock your phone.