Effects of User Habituation in Keystroke Dynamics on Password Security Policy

Syed, Zahid; Banerjee, Sean; Cheng, Quan; Čukić, Bojan

doi:10.1109/hase.2011.16

Cited by 31 publications

(12 citation statements)

References 25 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Moreover, if we take for training the very first samples (1)(2)(3)(4)(5), instead of samples from 196 to 200 (where we believe the user got used to the password), the resulting EER increases from 5.6 ± 1.3% to 35.2 ± 5.5% . A related conclusion was put forward by Syed et al [22] concerning the significant improvement of classifiers rebuilt after users were habituated to the password.…”

Section: Experiments To Tackle Question #1mentioning

confidence: 87%

See 1 more Smart Citation

Contributions to empirical analysis of keystroke dynamics in passwords

Montalvão

Freire

Bezerra

et al. 2015

Pattern Recognition Letters

View full text Add to dashboard Cite

Section: Experiments To Tackle Question #1mentioning

confidence: 87%

“…This heuristics is in agreement with empirical conclusions presented by Giot et al [9], according to which "it is better to choose passwords based on short, simple and known words". Indeed, habituation/familiarity of the keyed string was also considered as a relevant factor in other works, such as [6,17,18,22].…”

Section: Experiments To Tackle Question #1mentioning

confidence: 99%

Contributions to empirical analysis of keystroke dynamics in passwords

Montalvão

Freire

Bezerra

et al. 2015

Pattern Recognition Letters

View full text Add to dashboard Cite

“…The Bayes classifier [16], hidden Markov [15], Gaussian mixture [36] and k -nearest neighbor models [37] have been explored, as have different distance measures in [35,46]. More recently neural networks [60,61,52], Support Vector Machines [72,81], and ensemble learning through random forests [6,73] have also been studied.…”

Section: Current Researchmentioning

confidence: 99%

“…The physical characteristics of keystroke dynamics, such as keyboard layout [76], habituation [73,4,43,44] and model update techniques [44,43,4] received increased attention. In [73] the authors theorized that habituation was dependent on the type of password and could be leveraged for building more effective classifiers through the reduction of Equal Error Rates (EER). However, the study was confounded by the presence of larger training samples and lacked a rigorous statistical analysis of the effect of habituation over time.…”

Section: Current Researchmentioning

confidence: 99%

“…Further research is needed to determine whether the best performing algorithms are robust to noise. In a related behavioral biometrics domain (keystroke dynamics) it has been shown that user habituation affects classifier performance [73]. It is likely that this phenomenon affects the performance of mouse dynamics based authentication too.…”

Section: Classificationmentioning

confidence: 99%

See 1 more Smart Citation

Keystroke and Touch-dynamics Based Authentication for Desktop and Mobile Devices

Syed¹

View full text Add to dashboard Cite

The most commonly used system on desktop computers is a simple username and password approach which assumes that only genuine users know their own credentials. Once broken, the system will accept every authentication trial using compromised credentials until the breach is detected. Mobile devices, such as smart phones and tablets, have seen an explosive increase for personal computing and internet browsing. While the primary mode of interaction in such devices is through their touch screen via gestures, the authentication procedures have been inherited from keyboard-based computers, e.g. a Personal Identification Number, or a gesture based password, etc. This work provides contributions to advance two types of behavioral biometrics applicable to desktop and mobile computers: keystroke dynamics and touch dynamics. Keystroke dynamics relies upon the manner of typing rather than what is typed to authenticate users. Similarly, a continual touch based authentication that actively authenticates the user is a more natural alternative for mobile devices. Within the keystroke dynamics domain, habituation refers to the evolution of user typing pattern over time. This work details the significant impact of habituation on user behavior. It offers empirical evidence of the significant impact on authentication systems attempting to identify a genuine user affected by habituation, and the effect of habituation on similarities between users and impostors. It also proposes a novel effective feature for the keystroke dynamics domain called event sequences. We show empirically that unlike features from traditional keystroke dynamics literature, event sequences are independent of typing speed. This provides a unique advantage in distinguishing between users when typing complex text. With respect to touch dynamics, an immense variety of mobile devices are available for consumers, differing in size, aspect ratio, operating systems, hardware and software specifications to name a few. An effective touch based authentication system must be able to work with one user model across a spectrum of devices and user postures. This work uses a locally collected dataset to provide empirical evidence of the significant effect of posture, device size and manufacturer on user authentication performance. Based on the results of this strand of research, we suggest strategies to improve the performance of continual touch based authentication systems. This work is dedicated to my family for the unwavering support, encouragement and understanding. And to my wife, Sameera, my pillar of strength. You are, therefore I am.  To Dr. Bojan Cukic-As an advisor, you have mentored me with patience and dedication. Thank you for helping me build upon my strengths and having faith in me. You went out of your way to provide me opportunities to develop professionally and were easy-going when I needed a break. Your genial nature helped make the Ph.D. so much more bearable and, in many instances, fun. Thank you for being an awesome advisor.

show abstract