SocialAuth: Designing touch behavioral smartphone user authentication based on social networking applications

Weizhi Meng*, Wenjuan Li, Lijun Jiang, Jianying Zhou

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review

142 Downloads (Pure)

Abstract

Modern smartphones expressed an exponential growth and have become a personal assistant in people’s daily lives, i.e., keeping connected with peers. Users are willing to store their personal data even sensitive information on the phones, making these devices an attractive target for cyber-criminals. Due to the limitations of traditional authentication methods like Personal Identification Number (PIN), research has been moved to the design of touch behavioral authentication on smartphones. However, how to design a robust behavioral authentication in a long-term period remains a challenge due to behavioral inconsistency. In this work, we advocate that touch gestures could become more consistent when users interact with specific applications. In this work, we focus on social networking applications and design a touch behavioral authentication scheme called SocialAuth. In the evaluation, we conduct a user study with 50 participants and demonstrate that touch behavioral deviation under our scheme could be significantly decreased and kept relatively stable even after a long-term period, i.e., a single SVM classifier could achieve an average error rate of about 3.1% and 3.7% before and after two weeks, respectively.

Original languageEnglish
Title of host publicationProceedings of 34th International Conference on ICT Systems Security and Privacy Protection
EditorsGurpreet Dhillon, André Zúquete, Fredrik Karlsson, Karin Hedström
PublisherSpringer
Publication date1 Jan 2019
Pages180-193
ISBN (Print)9783030223113
DOIs
Publication statusPublished - 1 Jan 2019
Event34th IFIP TC 11 International Conference on Information Security and Privacy Protection - Lisbon, Portugal
Duration: 25 Jun 201927 Jun 2019
Conference number: 34

Conference

Conference34th IFIP TC 11 International Conference on Information Security and Privacy Protection
Number34
Country/TerritoryPortugal
CityLisbon
Period25/06/201927/06/2019
SeriesIFIP Advances in Information and Communication Technology
Volume562
ISSN1868-4238

Keywords

  • Behavioral user authentication
  • Machine learning
  • Smartphone security
  • Social networking
  • Touch gestures
  • Usable security

Fingerprint

Dive into the research topics of 'SocialAuth: Designing touch behavioral smartphone user authentication based on social networking applications'. Together they form a unique fingerprint.

Cite this