Abstract
Modern smartphones expressed an exponential growth and have become a personal assistant in people’s daily lives, i.e., keeping connected with peers. Users are willing to store their personal data even sensitive information on the phones, making these devices an attractive target for cyber-criminals. Due to the limitations of traditional authentication methods like Personal Identification Number (PIN), research has been moved to the design of touch behavioral authentication on smartphones. However, how to design a robust behavioral authentication in a long-term period remains a challenge due to behavioral inconsistency. In this work, we advocate that touch gestures could become more consistent when users interact with specific applications. In this work, we focus on social networking applications and design a touch behavioral authentication scheme called SocialAuth. In the evaluation, we conduct a user study with 50 participants and demonstrate that touch behavioral deviation under our scheme could be significantly decreased and kept relatively stable even after a long-term period, i.e., a single SVM classifier could achieve an average error rate of about 3.1% and 3.7% before and after two weeks, respectively.
Original language | English |
---|---|
Title of host publication | Proceedings of 34th International Conference on ICT Systems Security and Privacy Protection |
Editors | Gurpreet Dhillon, André Zúquete, Fredrik Karlsson, Karin Hedström |
Publisher | Springer |
Publication date | 1 Jan 2019 |
Pages | 180-193 |
ISBN (Print) | 9783030223113 |
DOIs | |
Publication status | Published - 1 Jan 2019 |
Event | 34th IFIP TC 11 International Conference on Information Security and Privacy Protection - Lisbon, Portugal Duration: 25 Jun 2019 → 27 Jun 2019 Conference number: 34 |
Conference
Conference | 34th IFIP TC 11 International Conference on Information Security and Privacy Protection |
---|---|
Number | 34 |
Country/Territory | Portugal |
City | Lisbon |
Period | 25/06/2019 → 27/06/2019 |
Series | IFIP Advances in Information and Communication Technology |
---|---|
Volume | 562 |
ISSN | 1868-4238 |
Keywords
- Behavioral user authentication
- Machine learning
- Smartphone security
- Social networking
- Touch gestures
- Usable security