Partial Flow 2.8 Validate entered PIN

Overview

Aspect	Description
Summary	The system validates a PIN entered by the user. Too many failed attempts causes the app to be temporarily or permanently blocked. This behaviour is configurable. For example, there may be four rounds of four attempts each. After the first three rounds, the app is blocked temporarily for 1 minute, then 5 minutes, then 1 hour. After the final round, the app is blocked permanently.
Goal	Preventing unauthorized access to and actions in the app.
Preconditions	None
Postconditions	Depends on the use case.
Used by	UC2.3 Unlock the app PF2.4 Confirm a protected action
Parameters	None
Possible Results	Valid PIN Retry Back
Additional Documentation	PIN Validation
Possible errors	No Internet Server Unreachable
Logical test cases	LTC57 PIN is invalid timeout LTC58 PIN is invalid Block LTC59 Mixed PIN entry success and failure LTC60 Timeout reset after successful PIN entry

Flow

#	Description	Next
1.1	System validates PIN, and applies PIN policy
1.1a	Case: Valid PIN when app not blocked	Result: Valid PIN
1.1b	Case: App temporarily blocked	5
1.1c	Case: App permanently blocked	9
1.1d	Case: Invalid PIN (non-final round, first time)	2
1.1e	Case: Invalid PIN (non-final round, second time)	3
1.1f	Case: Invalid PIN (non-final round, third time)	4
1.1g	Case: Invalid PIN (non-final round, fourth time)	5
1.1h	Case: Invalid PIN (final round, first time)	6
1.1i	Case: Invalid PIN (final round, second time)	7
1.1j	Case: Invalid PIN (final round, third time)	8
1.1k	Case: Invalid PIN (final round, fourth time)	9
1.1l	Error: No internet	Error flow: No Internet
1.1m	Error: Server unreachable	Error flow: Server Unreachable
2	WHEN PIN INVALID, NON-FINAL ROUND, FIRST TIME
2.1	System displays prompt ‘Wrong PIN, retry’ Message: wrong PIN, try again. Actions: Close, Forgot PIN
2.1a	User selects Close	Result: Retry
2.1b	User selects Forgot PIN	10
3	WHEN PIN INVALID, NON-FINAL ROUND, SECOND TIME
3.1	System displays prompt ‘Wrong PIN, retry’ Message: wrong PIN, you have 2 more attempts. Actions: Close, Forgot PIN
3.1a	User selects Close	Result: Retry
3.1b	User selects Forgot PIN	10
4	WHEN PIN INVALID, NON-FINAL ROUND, THIRD TIME
4.1	System displays prompt ‘Wrong PIN, retry’ Message: wrong PIN, you have 1 more attempt. Then your app will be blocked temporarily. Actions: Close, Forgot PIN
4.1a	User selects Close	Result: Retry
4.1b	User selects Forgot PIN	10
5	WHEN APP TEMPORARILY BLOCKED (NON-FINAL ROUND, FOURTH FAILED ATTEMPT)
5.1	System displays screen ‘Temporarily Blocked’ Message: app is blocked for X more seconds/minutes. Actions: Delete Wallet, Forgot PIN, Back, Help
5.1a	User selects Delete Wallet	Go to: UC9.4 Wipe all app data
5.1b	User selects Back	Result: Back
5.1c	User selects Help	Show placeholder ‘under construction’
5.1d	User selects Forgot PIN	10
5.1e	Event: timer expires	Result: Retry
6	WHEN PIN INVALID, FINAL ROUND FIRST TIME
6.1	System displays prompt ‘Wrong PIN, retry’ Message: wrong PIN, you have 3 more attempts. Then your app will be blocked permanently Actions: Close, Forgot PIN
6.1a	User selects Close	Result: Retry
6.1b	User selects Forgot PIN	10
7	WHEN PIN INVALID, FINAL ROUND SECOND TIME
7.1	System displays prompt ‘Wrong PIN, retry’ Message: wrong PIN, you have 2 more attempts. Then your app will be blocked permanently Actions: Close, Forgot PIN
7.1a	User selects Close	Result: Retry
7.1b	User selects Forgot PIN	10
8	WHEN PIN INVALID, FINAL ROUND THIRD TIME
8.1	System displays prompt ‘Wrong PIN, retry’ Message: wrong PIN, you have 1 more attempt. Then your app will be blocked permanently. Actions: Close, Forgot PIN
8.1a	User selects Close	Result: Retry
8.1b	User selects Forgot PIN	10
9	WHEN APP PERMANTLY BLOCKED (FINAL ROUND, FOURTH FAILED ATTEMPT)
9.1	System displays screen ‘App is Blocked’ Message: You have made too many failed PIN entries. If you want to use the wallet app you have to delete data and setup wallet again. Actions: Delete Wallet, Help
9.1a	User selects Delete Wallet	Go to: UC9.4 Wipe all app data
9.1b	User selects Help	Show placeholder ‘under construction’
10	RECOVER FROM FORGOTTEN PIN
10.1	System displays forgot PIN screen Forgot PIN? Actions: Delete Wallet, Back
10.1a	User selects Delete Wallet	Go to: UC9.4 Wipe all app data
10.1b	User selects Back	Result: Back