On keystrokes as Continuous User Biometric Authentication

Authentication of a user through an ID and password is generally done at the start of a session. But the continuous authentication system observe the genuineness of the user throughout the entire session, and not at login only. In this paper, we propose the usage of keystroke dynamics as biometric trait for continuous user authentication in desktop platform. Biometric Authentication involves mainly three phases named as enrollment phase, verification phase and identification phase. The identification phase marks the accessed user as an authenticated only if the input pattern matches with the profile pattern otherwise the system is logout. The proposed Continuous User Biometric Authentication (CUBA) System is based on free text input from keyboard. There is no restriction on input data during Enrolment, Verification, and Identification phase. Unsupervised One-class Support Vector Machine is used to classify the authenticated user’s input from all the other inputs. This continuous authentication system can be used in many areas like in Un-proctored online examination systems, Intrusion & Fraud Detection Systems, Areas where user alertness is required for entire period e.g. Controlling Air Traffic etc.

Download Full-text

Euler Movement Firefly Algorithm and Fuzzy Kernel Support Vector Machine Classifier for Keystroke Authentication

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

10.35940/ijitee.k2063.0981119 ◽

2019 ◽

Vol 8 (11) ◽

pp. 2267-2274

Keyword(s):

Support Vector Machine ◽

Firefly Algorithm ◽

User Authentication ◽

Modern Method ◽

User Profiling ◽

Support Vector ◽

Free Text ◽

Continuous Authentication ◽

Kernel Support Vector Machine ◽

Behavioural Biometrics

User authentication can be successfully employed using keyboard typing patterns which is a form of behavioural biometrics. This modern method is highly analyzed for static authentication which refers to typing of fixed texts like ‘password’ and ‘pin numbers’. Most of the methods with respect to keystroke dynamics are restricted to the study of user’s activity involving fixed text. The formulated work concentrates on the investigation of the log of the user activity focused on the keyboard usage within the computer system through free text which refers to typing of texts throughout the login session. The Buffalo dataset is used in User Profiling Similarity Measurement (UPSM) stage and to recognize the time slice of the users, Euler Movement Firefly Algorithm (EMFA) is utilized. The typing behaviour is formulated in the form of time series in User Profiling Continuous Keystroke Authentication (UPCKA). Moreover the progression is made to user’s Continuous Authentication so as to predict unauthorized users with the consideration of the classifier called Novel Fuzzy Kernel Support Vector Machine (NFKSVM). The experimental results provide the enhanced performance by utilizing the formulated UPCKA in correlation with the NFKSVM classifier when compared with SVM and Iterative Keystroke Continuous Authentication (IKCA) techniques

Download Full-text

Continuous User Authentication Based on Keystroke Dynamics through Neural Network Committee Machines

Continuous Authentication Using Biometrics ◽

10.4018/978-1-61350-129-0.ch011 ◽

2011 ◽

pp. 232-252

Author(s):

Sérgio Roberto de Lima e Silva Filho ◽

Mauro Roisenberg

Keyword(s):

Neural Network ◽

Neural Networks ◽

User Authentication ◽

Keystroke Dynamics ◽

Continuous Authentication ◽

Biometric Characteristic ◽

Continuous User ◽

Computer Keyboard

This chapter proposes an authentication methodology that is both inexpensive and non-intrusive and authenticates users continuously while using a computer keyboard. This proposed methodology uses neural network committee machines. The committee consists of several independent neural networks trained to recognize a behavioral biometric characteristic: user’s typing pattern. Continuous authentication prevents potential attacks when users leave their desks without logging out or locking their computer session. Some experiments were conducted to evaluate and to calibrate the authentication committee. Best results show that a 0% FAR and a 0.15% FRR can be achieved when different thresholds are used in the system for each user. In this proposed methodology, capture system does not need to concern about typing errors in the text. Another feature of this methodology is that new users can be easily added to the system, with no need to re-train all neural networks involved.

Download Full-text

A Continuous User Authentication System Based on Galvanic Coupling Communication for s-Health

Wireless Communications and Mobile Computing ◽

10.1155/2019/9361017 ◽

2019 ◽

Vol 2019 ◽

pp. 1-11 ◽

Cited By ~ 2

Author(s):

Fernando Nakayama ◽

Paulo Lenz ◽

Stella Banou ◽

Michele Nogueira ◽

Aldri Santos ◽

...

Keyword(s):

Real Time ◽

User Authentication ◽

Research Field ◽

Security Requirements ◽

Real Time Monitoring ◽

Galvanic Coupling ◽

Indirect Contact ◽

Security Breaches ◽

Continuous User ◽

Authentication System

Smart health (s-health) is a vital topic and an essential research field today, supporting the real-time monitoring of user’s data by using sensors, either in direct or indirect contact with the human body. Real-time monitoring promotes changes in healthcare from a reactive to a proactive paradigm, contributing to early detection, prevention, and long-term management of health conditions. Under these new conditions, continuous user authentication plays a key role in protecting data and access control, once it focuses on keeping track of a user’s identity throughout the system operation. Traditional user authentication systems cannot fulfill the security requirements of s-health, because they are limited, prone to security breaches, and require the user to frequently authenticate by, e.g., a password or fingerprint. This interrupts the normal use of the system, being highly inconvenient and not user friendly. Also, data transmission in current authentication systems relies on wireless technologies, which are susceptible to eavesdropping during the pairing stage. Biological signals, e.g., electrocardiogram (ECG) and electroencephalogram (EEG), can offer continuous and seamless authentication bolstered by exclusive characteristics from each individual. However, it is necessary to redesign current authentication systems to encompass biometric traits and new communication technologies that can jointly protect data and provide continuous authentication. Hence, this article presents a novel biosignal authentication system, in which the photoplethysmogram (PPG) biosignal and a galvanic coupling (GC) channel lead to continuous, seamless, and secure user authentication. Furthermore, this article contributes to a clear organization of the state of the art on biosignal-based continuous user authentication systems, assisting research studies in this field. The evaluation of the system feasibility presents accuracy in keeping data integrity and up to 98.66% accuracy in the authentication process.

Download Full-text

A Lightweight Privacy-Aware Continuous Authentication Protocol-PACA

ACM Transactions on Privacy and Security ◽

10.1145/3464690 ◽

2021 ◽

Vol 24 (4) ◽

pp. 1-28

Author(s):

Abbas Acar ◽

Shoukat Ali ◽

Koray Karabina ◽

Cengiz Kaygusuz ◽

Hidayet Aksu ◽

...

Keyword(s):

Template Matching ◽

User Authentication ◽

Third Party ◽

Biometric Data ◽

Concrete System ◽

Current State ◽

Continuous Authentication ◽

User Data ◽

Continuous User ◽

Privacy Issues

As many vulnerabilities of one-time authentication systems have already been uncovered, there is a growing need and trend to adopt continuous authentication systems. Biometrics provides an excellent means for periodic verification of the authenticated users without breaking the continuity of a session. Nevertheless, as attacks to computing systems increase, biometric systems demand more user information in their operations, yielding privacy issues for users in biometric-based continuous authentication systems. However, the current state-of-the-art privacy technologies are not viable or costly for the continuous authentication systems, which require periodic real-time verification. In this article, we introduce a novel, lightweight, <underline>p</underline>rivacy-<underline>a</underline>ware, and secure <underline>c</underline>ontinuous <underline>a</underline>uthentication protocol called PACA. PACA is initiated through a password-based key exchange (PAKE) mechanism, and it continuously authenticates users based on their biometrics in a privacy-aware manner. Then, we design an actual continuous user authentication system under the proposed protocol. In this concrete system, we utilize a privacy-aware template matching technique and a wearable-assisted keystroke dynamics-based continuous authentication method. This provides privacy guarantees without relying on any trusted third party while allowing the comparison of noisy user inputs (due to biometric data) and yielding an efficient and lightweight protocol. Finally, we implement our system on an Apple smartwatch and perform experiments with real user data to evaluate the accuracy and resource consumption of our concrete system.

Download Full-text

Combining Cryptography with EEG Biometrics

Computational Intelligence and Neuroscience ◽

10.1155/2018/1867548 ◽

2018 ◽

Vol 2018 ◽

pp. 1-11 ◽

Cited By ~ 15

Author(s):

Robertas Damaševičius ◽

Rytis Maskeliūnas ◽

Egidijus Kazanavičius ◽

Marcin Woźniak

Keyword(s):

Error Rate ◽

User Authentication ◽

Discrete Logarithm ◽

Security Analysis ◽

Experimental Results ◽

Biometric Authentication ◽

Equal Error Rate ◽

Eeg Data ◽

Authentication System ◽

Biometric Cryptosystem

Cryptographic frameworks depend on key sharing for ensuring security of data. While the keys in cryptographic frameworks must be correctly reproducible and not unequivocally connected to the identity of a user, in biometric frameworks this is different. Joining cryptography techniques with biometrics can solve these issues. We present a biometric authentication method based on the discrete logarithm problem and Bose-Chaudhuri-Hocquenghem (BCH) codes, perform its security analysis, and demonstrate its security characteristics. We evaluate a biometric cryptosystem using our own dataset of electroencephalography (EEG) data collected from 42 subjects. The experimental results show that the described biometric user authentication system is effective, achieving an Equal Error Rate (ERR) of 0.024.

Download Full-text

Mobile-based continuous user authentication system for cloud security

2016 IEEE International Conference on Network Infrastructure and Digital Content (IC-NIDC) ◽

10.1109/icnidc.2016.7974559 ◽

2016 ◽

Cited By ~ 2

Author(s):

Qing Li ◽

Le Wang ◽

TaeGuen Kim ◽

Eul Gyu Im

Keyword(s):

User Authentication ◽

Cloud Security ◽

Continuous User ◽

Authentication System

Download Full-text

Performance of a long-text-input keystroke biometric authentication system using an improved k-nearest-neighbor classification method

2010 Fourth IEEE International Conference on Biometrics: Theory, Applications and Systems (BTAS) ◽

10.1109/btas.2010.5634492 ◽

2010 ◽

Cited By ~ 15

Author(s):

Robert S. Zack ◽

Charles C. Tappert ◽

Sung-Hyuk Cha

Keyword(s):

Nearest Neighbor ◽

Classification Method ◽

Biometric Authentication ◽

K Nearest Neighbor ◽

Nearest Neighbor Classification ◽

Text Input ◽

Authentication System ◽

Neighbor Classification

Download Full-text

Natural language processing for cognitive therapy: Extracting schemas from thought records

PLoS ONE ◽

10.1371/journal.pone.0257832 ◽

2021 ◽

Vol 16 (10) ◽

pp. e0257832

Author(s):

Franziska Burger ◽

Mark A. Neerincx ◽

Willem-Paul Brinkman

Keyword(s):

Mental Health ◽

Neural Networks ◽

Natural Language Processing ◽

Natural Language ◽

Language Processing ◽

Recurrent Neural Networks ◽

Support Vector ◽

Free Text ◽

Cognitive Approach ◽

Text Input

The cognitive approach to psychotherapy aims to change patients’ maladaptive schemas, that is, overly negative views on themselves, the world, or the future. To obtain awareness of these views, they record their thought processes in situations that caused pathogenic emotional responses. The schemas underlying such thought records have, thus far, been largely manually identified. Using recent advances in natural language processing, we take this one step further by automatically extracting schemas from thought records. To this end, we asked 320 healthy participants on Amazon Mechanical Turk to each complete five thought records consisting of several utterances reflecting cognitive processes. Agreement between two raters on manually scoring the utterances with respect to how much they reflect each schema was substantial (Cohen’s κ = 0.79). Natural language processing software pretrained on all English Wikipedia articles from 2014 (GLoVE embeddings) was used to represent words and utterances, which were then mapped to schemas using k-nearest neighbors algorithms, support vector machines, and recurrent neural networks. For the more frequently occurring schemas, all algorithms were able to leverage linguistic patterns. For example, the scores assigned to the Competence schema by the algorithms correlated with the manually assigned scores with Spearman correlations ranging between 0.64 and 0.76. For six of the nine schemas, a set of recurrent neural networks trained separately for each of the schemas outperformed the other algorithms. We present our results here as a benchmark solution, since we conducted this research to explore the possibility of automatically processing qualitative mental health data and did not aim to achieve optimal performance with any of the explored models. The dataset of 1600 thought records comprising 5747 utterances is published together with this article for researchers and machine learning enthusiasts to improve upon our outcomes. Based on our promising results, we see further opportunities for using free-text input and subsequent natural language processing in other common therapeutic tools, such as ecological momentary assessments, automated case conceptualizations, and, more generally, as an alternative to mental health scales.

Download Full-text