Juan Liu,Baochang Zhang,Haoran Zeng,Linlin Shen,Jianzhuang Liu,Jason Zhao

DOI: https://doi.org/10.1016/j.neucom.2014.04.044

IF: 6

2014-01-01

Neurocomputing

Abstract:Keystroke dynamics is an important biometric branch for person authentication. Based upon keystroke dynamics, this paper designs an embedded password protection device, develops an online system, collects two public databases for promoting the research on keystroke authentication, exploits transformation methods to characterize keystroke dynamics, and provides benchmark results of several popular classification algorithms, one-class support vector machine, Gaussian classifier, and nearest neighbor classifier.

Jing Tian,Chengzhang Qu,Wenyuan Xu,Song Wang

2013-01-01

Abstract:Password-based authentication is easy to use but its security is bounded by how much a user can remember. Biometrics-based authentication requires no memorization but ‘resetting’ a biometric password may not always be possible. In this paper, we propose a user-friendly authentication system (KinWrite) that allows users to choose arbitrary, short and easy-to-memorize passwords while providing resilience to password cracking and password theft. KinWrite lets users write their passwords in 3D space and captures the handwriting motion using a low cost motion input sensing device—Kinect. The low resolution and noisy data captured by Kinect, combined with low consistency of in-space handwriting, have made it challenging to verify users. To overcome these challenges, we exploit the Dynamic Time Warping (DTW) algorithm to quantify similarities between handwritten passwords. Our experimental results involving 35 signatures from 18 subjects and a brute-force attacker have shown that KinWrite can achieve a 100% precision and a 70% recall (the worst case) for verifying honest users, encouraging us to carry out a much larger scale study towards designing a foolproof system.

Zhaohang Chen,Hongming Cai,Lihong Jiang,WenYun Zou,Wendong Zhu,Xiang Fei

DOI: https://doi.org/10.1109/CSCWD49262.2021.9437721

2021-01-01

Abstract:Currently user authentication and identity monitoring are required in various collaborative computer supported systems, such as online assessments and examinations. However, existing authentication methods such as passwords checking are less reliable. In addition, identity monitoring is hard to be realized effectively and efficiently f or a pplications b ased on collaborative architecture. In this paper, we leverage keystroke dynamics to explore biometrics security and propose a user authentication framework based on edge computing architecture to address these issues. To support both static and continuous authentications with high accuracy and efficiency, dynamically improved keystroke profiles, G aussian m odel b ased anomaly detector and keystroke stream processing are designed in the framework. The feasibility and effectiveness of the framework are verified by three representative public data sets and a real-world case study. The results show that the authentication can proceeds efficiently t o e nable a n u ndisturbed a nd s ecure e nvironment for online examinations.

Rashik Shadman,Ahmed Anu Wahab,Michael Manno,Matthew Lukaszewski,Daqing Hou,Faraz Hussain

2024-06-23

Abstract:Reliably identifying and verifying subjects remains integral to computer system security. Various novel authentication techniques such as biometric authentication systems have been devised in recent years. This paper surveys keystroke-based authentication systems and their applications. Keystroke dynamics is a behavioral biometric that is emerging as an important tool for cybersecurity as it promises to be non-intrusive and cost-effective. Also, no additional hardware is required, making it convenient to deploy. This survey covers novel keystroke datasets, state-of-the-art keystroke authentication algorithms, keystroke authentication on touch screen and mobile devices, and various prominent applications of such techniques beyond authentication. The paper covers all the significant aspects of keystroke dynamics and can be considered as a reference for future researchers in this domain. The paper includes a discussion of the latest keystroke datasets, providing researchers with up-to-date resources for analysis and experimentation. Additionally, we review the state-of-the-art algorithms adopted within this domain, offering insights into the cutting-edge techniques utilized for keystroke analysis. Moreover, our paper explains the diverse applications of keystroke dynamics, particularly focusing on security, verification and identification uses. Beyond these crucial areas, we mention other additional applications where keystroke dynamics can be applied, broadening the scope of understanding regarding its potential impact across various domains.

Cryptography and Security

Romain Giot,Mohamad El-Abed,Christophe Rosenberger

DOI: https://doi.org/10.48550/arXiv.0911.3304

IF: 5.414

2009-11-17

Machine Learning

Abstract:We present in this paper a study on the ability and the benefits of using a keystroke dynamics authentication method for collaborative systems. Authentication is a challenging issue in order to guarantee the security of use of collaborative systems during the access control step. Many solutions exist in the state of the art such as the use of one time passwords or smart-cards. We focus in this paper on biometric based solutions that do not necessitate any additional sensor. Keystroke dynamics is an interesting solution as it uses only the keyboard and is invisible for users. Many methods have been published in this field. We make a comparative study of many of them considering the operational constraints of use for collaborative systems.

Yilin Li,Baochang Zhang,Yao Cao,Sanqiang Zhao,Yongsheng Gao,Jianzhuang Liu

DOI: https://doi.org/10.1109/ijcb.2011.6117485

2011-01-01

Abstract:This paper introduces a new BeiHang (BH) Keystroke Dynamics Database for testing and evaluation of biometric approaches. Different from the existing keystroke dynamics researches which solely rely on laboratory experiments, the developed database is collected from a real commercialized system and thus is more comprehensive and more faithful to human behavior. Moreover, our database comes with ready-to-use benchmark results of three keystroke dynamics methods, Nearest Neighbor classifier, Gaussian Model and One-Class Support Vector Machine. Both the database and benchmark results are open to the public and provide a significant experimental platform for international researchers in the keystroke dynamics area.

ZENG Hao-ran,ZHANG Bao-chang

DOI: https://doi.org/10.3969/j.issn.1671-1122.2012.09.027

2012-01-01

Abstract:Password protection is the traditional and mostly wide used method in internet security.However,it no longer meet more severe environment nowadays as we are facing more high-tech criminals.Once the password is stolen,our privacy is no longer safe.Keystroke Dynamics technology is such technology that can solve the above problem.This paper proposed a new method based on Gaussian function to protect password.We introduce knowledge about keystroke dynamics,and some key issues of keystroke dynamic technology,such as hardware design,embedded system,keystroke feature,keystroke databases.The Gaussian model are well studied and applied in the experiments.Furthermore,the results of the experiments confirmed the stability and performance of the Gaussian model.

Robert Cockell,Basel Halak

DOI: https://doi.org/10.48550/arXiv.1909.10841

2019-09-24

Abstract:This paper proposes a portable hardware token for user authentication, it is based on the use of keystroke dynamics to verify users in a bio-metric manner. The proposed approach allows for a multifactor authentication scheme in which users are not allowed access unless they provide the correct password and their unique bio-metric signature. The proposed system is implemented in hardware and its security is evaluated.

Cryptography and Security

Anastasia Dimaratos,Daniela Pöhn

DOI: https://doi.org/10.5220/0011626100003405

2024-07-23

Abstract:Password authentication is a weak point for security as passwords are easily stolen and a user may ignore the security by using a simple password. Therefore, services increasingly demand a second factor. While this may enhance security, it comes with a lower level of usability and another factor to be forgotten. A smartphone is an important device in daily life. With the growing number of sensors and features in a smartphone, keystroke dynamics may provide an easy-to-use method. In this paper, we introduce requirements for biometric authentication and keystroke dynamics. This results in an evaluation scheme, which is applied to three selected approaches. Based on the comparison, keystroke dynamics and the evaluation scheme are discussed. The obtained results indicate that keystroke dynamics can be used as another authentication method but can be bypassed by stronger adversaries. For further research, a common data set would improve the comparability.

Cryptography and Security

Chenhao Lin,Jingyi He,Chao Shen,Qi Li,Qian Wang

DOI: https://doi.org/10.1109/tdsc.2022.3179603

2022-01-01

Abstract:Behavioral biometrics has been widely investigated and deployed in real world scenarios for human authentication. However, there has been almost nil attempt to identify behavior patterns in a cross-scenario setting, which is common in practice and needs urgent attention. This paper defines and investigates cross-scenario behavioral biometrics authentication using keystroke dynamics. A novel system called CrossBehaAuth is presented for extending keystroke dynamics-based behavior authentication to new scenarios and extensive problems. We design a temporal-aware learning mechanism based deep neural network for cross-scenario keystroke dynamics authentication. This mechanism selectively learns and encodes temporal information for efficient behavioral pattern transfer in cross-scenario settings. A local Gaussian data augmentation approach is proposed to increase the diversity of behavioral data and therefore, further improve the performance. We evaluate the proposed approach on two publicly available datasets. The extensive experimental results confirm the efficacy of our CrossBehaAuth for cross-scenario keystroke dynamics authentication. Our approach significantly improves the authentication accuracy in cross-scenario settings and even achieves comparable performance on single-scenario authentication tasks. In addition, our approach shows its generalizability and advantages in both single and cross scenario keystroke dynamics authentication.

Guangquan Zhao,Jin Yang,Jun Chen,Zedong Jiang,Xiaoyong Liu,Guangxing Niu,Zhong Lin Wang,Bin Zhang

DOI: https://doi.org/10.1002/admt.201800167

IF: 6.8

2019-01-01

Advanced Materials Technologies

Abstract:Due to the heavy reliance on computers and networks, security issues have become a major concern for individuals, companies, and nations. Traditional security measures such as personal identification numbers, tokens, or passwords only provide limited protection. With the development of intelligent keyboard (IKB), this paper proposes a deep-learning-based keystroke dynamics identification method for increased security. The IKB is a kind of self-powered, nonmechanical-punching keyboard, which converts mechanical stimuli applied to the keyboard into local electronic signals. Multilayer deep belief network (DBN) is established to mine the useful information from raw electronic signals and output the keystroke dynamics identification result. The contributions include development of a novel solution that does not rely on manual feature extraction, and provides promising recognition accuracy on large amount of typing samples. One significant advantage of the proposed method is that it extracts features adaptively from the raw current signals and automatically recognizes the typing pattern, which simplifies the design of verification and identification system. The experimental results on 104 typing samples demonstrate the effectiveness of the proposed method. The proposed method has extensive applications in keyboard-based information security.

Joseph Roth,Xiaoming Liu,Arun Ross,Dimitris Metaxas

DOI: https://doi.org/10.1109/icb.2013.6613015

2013-06-01

Abstract:Unlike conventional “one shot” biometric authentication schemes, continuous authentication has a number of advantages, such as longer time for sensing, ability to rectify authentication decisions, and persistent verification of a user's identity, which are critical in applications demanding enhanced security. However, traditional modalities such as face, fingerprint and keystroke dynamics, have various drawbacks in continuous authentication scenarios. In light of this, this paper proposes a novel nonintrusive and privacy-aware biometric modality that utilizes keystroke sound. Given the keystroke sound recorded by a low-cost microphone, our system extracts discriminative features and performs matching between a gallery and a probe sound stream. Motivated by the concept of digraphs used in modeling keystroke dynamics, we learn a virtual alphabet from keystroke sound segments, from which the digraph latency within pairs of virtual letters as well as other statistical features are used to generate match scores. The resultant multiple scores are indicative of the similarities between two sound streams, and are fused to make a final authentication decision. We collect a first-of-its-kind keystroke sound database of 45 subjects typing on a keyboard. Experiments on static text-based authentication, demonstrate the potential as well as limitations of this biometric modality.

Qianqian Zhou,Yanni Yang,Feng Hong,Yuan Feng,Zhongwen Guo

DOI: https://doi.org/10.1109/msn.2016.082

2016-01-01

Abstract:This paper combines keystroke dynamics features with recently proposed keystroke acoustic features for user identification and authentication. Traditional keystroke dynamics uses temporal features. This paper explores the discriminative capability of the fusion of temporal features and acoustic features. This paper also explores the influence of filtering keystroke sound which turns out to be harmful for the performance of keystroke acoustic features. We collected a total of 824 samples from 7 subjects for experiments. 46 features including 38 acoustic features are extracted for the proposed user identification and authentication system. C-Support Vector Classification (C-SVC) and one-class Support Vector Machine (1-SVM) are applied for user identification and authentication respectively. Extensive experiments are carried out to verify the proposed system. Our work achieves 92.8% accuracy for user identification. The FRR (False Rejection Rate) and FAR (False Acceptance Rate) are only 12% and 11% for user authentication.

Yuanwei Hou,Yu Gu,Weiping Li,Zhi Liu

DOI: https://doi.org/10.1587/transfun.2021eap1119

2022-01-01

IEICE Transactions on Fundamentals of Electronics Communications and Computer Sciences

Abstract:The fast evolving credential attacks have been a great security challenge to current password-based information systems. Recently, biometrics factors like facial, iris, or fingerprint that are difficult to forge rise as key elements for designing passwordless authentication. However, capturing and analyzing such factors usually require special devices, hindering their feasibility and practicality. To this end, we present WiASK, a device-free WiFi sensing enabled Authentication System exploring Keystroke dynamics. More specifically, WiASK captures keystrokes of a user typing a pre-defined easy-to-remember string leveraging the existing WiFi infrastructure. But instead of focusing on the string itself which are vulnerable to password attacks, WiASK interprets the way it is typed, i.e., keystroke dynamics, into user identity, based on the biologically validated correlation between them. We prototype WiASK on the low-cost off-the-shelf WiFi devices and verify its performance in three real environments. Empirical results show thatWiASK achieves on average 93.7% authentication accuracy, 2.5% false accept rate, and 5.1% false reject rate.

朱明,周津,王继康

DOI: https://doi.org/10.3969/j.issn.1000-3428.2002.10.053

2002-01-01

Abstract:Password plays an important part in security management for most computers and networks. How to prevent illegal intrusion due to password stealing is always one open question. A new approach which identifies user by utilizing keystroke features is proposed when user inputs his password. The key pressure and keystroke frequency when user strikes the keyboard to enter his password are used to construct a peculiar keystroke vector representing each user respectively. A new algorithm is put forward to classify positive and negative examples only by a limited positive examples. The related experiment indicates this approach has a good discerning ability.

Ying Zhang,Guiran Chang,Lin Liu,Jie Jia

DOI: https://doi.org/10.1109/icgec.2010.148

2010-01-01

Abstract:In this paper, we use statistical methods to establish a keystroke biometrics model to authenticate a user’s identity by predicting the user’s keystroke behavior characteristics. We use HMM for keystroke sequence analysis and time series to compute the state output probability of HMM used in keystroke biometrics model. At the authentication phase, we use modified forward algorithm to compute the users’ typing behavior state. We also collect the users’ keystroke data to establish the authentication model. Then using fixed text analysis and digraph’s keystroke duration time, we implement the authentication mechanism. Extensive experiments have verified the effectiveness of the proposed solutions.

Han-Chih Chang,Jianwei Li,Mark Stamp

DOI: https://doi.org/10.48550/arXiv.2107.07409

IF: 5.414

2021-07-01

Machine Learning

Abstract:The development of active and passive biometric authentication and identification technology plays an increasingly important role in cybersecurity. Keystroke dynamics can be used to analyze the way that a user types based on various keyboard input. Previous work has shown that user authentication and classification can be achieved based on keystroke dynamics. In this research, we consider the problem of user classification based on keystroke dynamics features collected from free-text. We implement and analyze a novel a deep learning model that combines a convolutional neural network (CNN) and a gated recurrent unit (GRU). We optimize the resulting model and consider several relevant related problems. Our model is competitive with the best results obtained in previous comparable research.

Hai-Rong Lv,Wen-Yuan Wang

DOI: https://doi.org/10.1109/tce.2006.1706507

2006-01-01

IEEE Transactions on Consumer Electronics

Abstract:This paper presents a novel biologic verification method based on pressure sensor keyboards and classifier fusion techniques. The pressure sensor keyboard is a new product that occurs in the market recently. It produces a pressure sequence when keystroke occurs. The analysis of the pressure sequence should be a novel research area. In this paper, we use the pressure sequence and traditional keystroke dynamics in user authentication. Three methods (global features of pressure sequences, dynamic time warping, and traditional keystroke dynamics) are proposed for the authentication task. We combined the three methods together using a classifier fusion technique at last. Several experiments were performed on a database containing 5000 samples of 100 individuals and the best result were achieved utilizing all the method, obtaining an equal error rate of 1.41%. To make a comparison, the equal error rate is 2.04% when we use only the traditional keystroke dynamics. This approach can be used to improve the usual login-password authentication when the password is no more a secret

Zhang Tao,Fan Ming-Yu,Fu Bo

DOI: https://doi.org/10.1109/isdpe.2007.48

2007-01-01

Abstract:The security of biometric template is generally based on the security of algorithms, such as key binding algorithm or hash function. However, we focus on a different aspect of the problem, and note that even if the biometric template is secure in algorithmic design, it may still be vulnerable to side-channel attack due to the physical leakage. To assess the possible side-channel attack on biometric template, a secure biometric key system (BKS) is designed firstly, which combines keystroke dynamics with secret sharing scheme. Then, by measuring the power consumption leaked from the proposed BKS, we extract the correct biometric template through differential power attack (DPA).

Han-Chih Chang,Jianwei Li,Ching-Seh Wu,Mark Stamp

DOI: https://doi.org/10.48550/arXiv.2107.00507

IF: 5.414

2021-07-01

Machine Learning

Abstract:Keystroke dynamics can be used to analyze the way that users type by measuring various aspects of keyboard input. Previous work has demonstrated the feasibility of user authentication and identification utilizing keystroke dynamics. In this research, we consider a wide variety of machine learning and deep learning techniques based on fixed-text keystroke-derived features, we optimize the resulting models, and we compare our results to those obtained in related research. We find that models based on extreme gradient boosting (XGBoost) and multi-layer perceptrons (MLP)perform well in our experiments. Our best models outperform previous comparable research.