Wireless Communications and Mobile Computing / 2018 / Article / Fig 1

Research Article

Resetting Your Password Is Vulnerable: A Security Study of Common SMS-Based Authentication in IoT Device

Figure 1

Password reset via brute-force attack to SMS authentication code: code0000 is a SMS authentication code whose value is 0000 and codeNNNN is an instance of all possible SMS authentication code whose value ranges from 0000 to 9999.