Keystroke Dynamics Algorithm for Securing Web-based Password Driven Systems

Osei, Michael Boakye; Gyamfi, Enoch Opanin; Alhassan, Mohammed Okoe

doi:10.9734/ajrcos/2019/v4i430119

Cited by 3 publications

(1 citation statement)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Zaidan, Salem, Swidan, and Saifan [27] developed a web-based application for use in the study of the factors affecting KD in mobile systems that extracts and stores features such as the characters typed, keyhold latency, up-down latency, down-down latency, and overall latency; they then tested factors such as the device used for typing, the knowledge of the text, the mood of the user, and the complexity of the password on this dataset and achieved positive results. Boakye Osei, Opanin Gyamfi, and Okoe Alhassan [52] proposed a web-based keystroke login system using features such as dwell, flight, and locate to minimize error rates. Though the system achieved lower error rates than previous systems, it was limited to web-based formats and QWERTY keyboards.…”

Section: E Web-based Behavioral Authenticationmentioning

confidence: 99%

A Secure and Scalable Behavioral Dynamics Authentication Model

Oladipo,

Awotunde,

Nicho

et al. 2023

IJACSA

View full text Add to dashboard Cite

Various authentication methods have been proposed to mitigate data breaches. However, the increasing frequency of data breaches and users' lack of awareness have exposed traditional methods, including single-factor passwordbased systems and, two-factor authentication systems, to vulnerabilities against attacks. While behavioral authentication holds promise in tackling these issues, it faces challenges concerning interoperability between operating systems, the security of behavioral data, accuracy enhancement, scalability, and cost. This research presents a scalable dynamic behavioral authentication model utilizing keystroke typing patterns. The model is constructed around five key components: humancomputer interface devices, encryption of behavioral data, consideration of the authenticator's emotional state, incorporation of cross-platform features, and proposed implementation solutions. It addresses potential typing errors and employs data encryption for behavioral data, achieving a harmonious blend of usability and security by leveraging keyboard dynamics. This is accomplished through the implementation of a web-based authentication system that integrates Convolutional Neural Networks (CNNs) for advanced feature engineering. Keystroke typing patterns were gathered from participants and subsequently employed to evaluate the system's keystroke timing verification, login ID verification, and error handling capabilities. The web-based system uniquely identifies users by merging their username-password (UN-PW) credentials with their keyboard typing patterns, all while securely storing the keystroke data. Given the achievement of a 100% accuracy rate, the proposed Behavioral Dynamics Authentication Model (BDA) introduces future researchers to five scalable constructs. These constructs offer an optimal combination, tailored to the device and context, for maximizing effectiveness. This achievement underscores its potential applications in the realm of authentication.

show abstract

Section: E Web-based Behavioral Authenticationmentioning

confidence: 99%

A Secure and Scalable Behavioral Dynamics Authentication Model

Oladipo,

Awotunde,

Nicho

et al. 2023

IJACSA

View full text Add to dashboard Cite

show abstract

A Systematic Literature Review on Latest Keystroke Dynamics Based Models

et al. 2022

View full text Add to dashboard Cite

The purpose of this study is to conduct a comprehensive evaluation and analysis of the most recent studies on the implications of keystroke dynamics (KD) patterns in user authentication, identification, and the determination of useful information. Another aim is to provide an extensive and up-to-date survey of the recent literature and potential research directions to understand the present state-of-the-art methodologies in this particular domain that are expected to be beneficial for the KD research community. From January 1st, 2017 to March 13th, 2022, the popular six electronic databases have been searched using a search criterion ("keystroke dynamics" OR "typing pattern") AND ("authentication" OR "verification" OR "identification"). With this criterion, a total of nine thousand three hundred forty-eight results, including duplicates, were produced. However, one thousand five hundred forty-seven articles have been chosen after removing duplicates and preliminary screening. Due to insufficient information, only one hundred twentyseven high-quality quantitative research articles have been included in the article selection process. We compared and summarised several factors with multiple tables to comprehend the various methodologies, experimental settings, and findings. In this study, we have identified six unique KD-based designs and presented the status of findings toward an effective solution in authentication, identification, and prediction. We have also discovered considerable heterogeneity across studies in each KD-based design for desktops and smartphones separately. Finally, this paper found a few open research challenges and provided some indications for a deeper understanding of the issues and further study.

show abstract