MicrosoftKalimanneJ Longer PINs aren't a great solution any more than longer passwords are a great solution. When trying to convince the user base that Hello versus typing their AD password is a better solution, it matters little that it is inherently more secure. You can't sell more secure, unfortunately you have to force it, for the average phishable user, because honestly if they're psychologically phishable then actual security matters little to them. Their convenience matters more.
You're also making a pretty big leap here on victims knowing they're being shoulder surfed. I suppose people don't get pickpocketed either, because clearly they will, with 100% success, know they're being pickpocketed. Or, that someone couldn't possibly be shoulder surfed without their knowledge and then have their device brazenly stolen out of their hands.
navaneeth_likeminds our workaround was two require two factors for Windows Hello because unfortunately one of those factors available - at present - will always include PIN. If we could remove PIN as an option, then we could realistically have biometric be the only Hello factor.
Humans are the weakness in this process, and one has to have a bit of imagination to figure out the ways that security via PIN only is inadequate.
