Touch Me Once and I Know It's You!: Implicit Authentication Based on Touch Screen Patterns. De Luca, A., Hang, A., Brudy, F., Lindner, C., & Hussmann, H. In Proceedings of the Conference on Human Factors in Computing Systems (CHI), pages 987-996, 5, 2012. ACM.
Touch Me Once and I Know It's You!: Implicit Authentication Based on Touch Screen Patterns [link]Website  abstract   bibtex   
Password patterns, as used on current Android phones, and other shape-based authentication schemes are highly usable and memorable. In terms of security, they are rather weak since the shapes are easy to steal and reproduce. In this work, we introduce an implicit authentication approach that enhances password patterns with an additional security layer, transparent to the user. In short, users are not only authenticated by the shape they input but also by the way they perform the input. We conducted two consecutive studies, a lab and a long-term study, using Android applications to collect and log data from user input on a touch screen of standard commercial smartphones. Analyses using dynamic time warping (DTW) provided first proof that it is actually possible to distinguish different users and use this information to increase security of the input while keeping the convenience for the user high.
@inProceedings{
 title = {Touch Me Once and I Know It's You!: Implicit Authentication Based on Touch Screen Patterns},
 type = {inProceedings},
 year = {2012},
 identifiers = {[object Object]},
 keywords = {android,authentication,dtw,implicit-authentication,password,pattern,security,smartphone,touchscreen},
 pages = {987-996},
 websites = {http://doi.acm.org/10.1145/2207676.2208544},
 month = {5},
 publisher = {ACM},
 id = {6c6ce85b-ccb9-33c3-8239-6cd0aad74e0b},
 created = {2018-07-12T21:31:10.029Z},
 file_attached = {false},
 profile_id = {f954d000-ce94-3da6-bd26-b983145a920f},
 group_id = {b0b145a3-980e-3ad7-a16f-c93918c606ed},
 last_modified = {2018-07-12T21:31:10.029Z},
 read = {false},
 starred = {false},
 authored = {false},
 confirmed = {true},
 hidden = {false},
 citation_key = {de-luca:touch12},
 source_type = {inproceedings},
 private_publication = {false},
 abstract = {Password patterns, as used on current Android phones, and other shape-based authentication schemes are highly usable and memorable. In terms of security, they are rather weak since the shapes are easy to steal and reproduce. In this work, we introduce an implicit authentication approach that enhances password patterns with an additional security layer, transparent to the user. In short, users are not only authenticated by the shape they input but also by the way they perform the input. We conducted two consecutive studies, a lab and a long-term study, using Android applications to collect and log data from user input on a touch screen of standard commercial smartphones. Analyses using dynamic time warping (DTW) provided first proof that it is actually possible to distinguish different users and use this information to increase security of the input while keeping the convenience for the user high.},
 bibtype = {inProceedings},
 author = {De Luca, Alexander and Hang, Alina and Brudy, Frederik and Lindner, Christian and Hussmann, Heinrich},
 booktitle = {Proceedings of the Conference on Human Factors in Computing Systems (CHI)}
}

Downloads: 0