I have just discovered that Luma now allows you to set a PIN which locks access to the 3DS on boot. This is great, because it helps to prevent people from using my 3DS if it's lost or stolen. The PIN is stored in /luma/pin.bin on the SD card. If you delete the file, Luma will no longer prompt you for the PIN. Clearly if a thief understands about CFW and knows what they're doing, they could put the SD card in their computer and delete the file. So, I'm wondering if it's possible to write the PIN to a file on the NAND itself? That way it would be impossible to circumvent the PIN lock. Of course, replacing arm9loaderhax.bin with a different CFW would work, but I believe A9LH can now boot without an SD card so presumably the Luma payload can now be located in NAND as well.