Keystroke dynamics-based user authentication using long and free text strings from various input devices

Pilsung Kang, Sungzoon Cho

Research output: Contribution to journalArticle

39 Citations (Scopus)

Abstract

Keystroke dynamics, which refers to the typing pattern of an individual, has been highlighted as a practical behavioral biometric feature that does not require any additional recognition device for strengthening user authentication or identification. However, research in the area of keystroke dynamics-based user authentication (KDA) has been primarily focused only on the short predefined text, such as identification (ID) and password, typed on a traditional personal computer (PC) keyboard. In this paper, we aim to explore the extendability of KDA by considering long and free text strings from various input devices. Three fundamental questions are raised about the dependence of authentication performance on (1) the type of input device, (2) the length of text strings, and (3) the type of authentication algorithm. Based on the experimental tests, we observe that (1) the usage of a PC keyboard reported the highest authentication accuracy, followed by a soft keyboard and a touch keyboard; (2) the authentication accuracy could be strengthened by increasing the length of either reference or test keystrokes; (3) the R + A and RA measures report the best performance with a PC keyboard, while the Cramér-von Mises criterion reports the best performance with the other input devices for most cases, followed by the Parzen window density estimator.

Original languageEnglish
Pages (from-to)72-93
Number of pages22
JournalInformation Sciences
Volume308
DOIs
Publication statusPublished - 2015 Jul 1

Fingerprint

Input Devices
User Authentication
Authentication
Personal Computer
Strings
Computer keyboards
Personal computers
Parzen Window
Extendability
Density Estimator
Password
Strengthening
Biometrics
Text

Keywords

  • Cramér-von Mises criterion
  • Keystroke dynamics
  • Long and free text strings
  • R and A measure
  • User authentication
  • Various input devices

ASJC Scopus subject areas

  • Control and Systems Engineering
  • Theoretical Computer Science
  • Software
  • Computer Science Applications
  • Information Systems and Management
  • Artificial Intelligence

Cite this

Keystroke dynamics-based user authentication using long and free text strings from various input devices. / Kang, Pilsung; Cho, Sungzoon.

In: Information Sciences, Vol. 308, 01.07.2015, p. 72-93.

Research output: Contribution to journalArticle

@article{257e8ca37e924fc69cefd48fdb8d3d85,
title = "Keystroke dynamics-based user authentication using long and free text strings from various input devices",
abstract = "Keystroke dynamics, which refers to the typing pattern of an individual, has been highlighted as a practical behavioral biometric feature that does not require any additional recognition device for strengthening user authentication or identification. However, research in the area of keystroke dynamics-based user authentication (KDA) has been primarily focused only on the short predefined text, such as identification (ID) and password, typed on a traditional personal computer (PC) keyboard. In this paper, we aim to explore the extendability of KDA by considering long and free text strings from various input devices. Three fundamental questions are raised about the dependence of authentication performance on (1) the type of input device, (2) the length of text strings, and (3) the type of authentication algorithm. Based on the experimental tests, we observe that (1) the usage of a PC keyboard reported the highest authentication accuracy, followed by a soft keyboard and a touch keyboard; (2) the authentication accuracy could be strengthened by increasing the length of either reference or test keystrokes; (3) the R + A and RA measures report the best performance with a PC keyboard, while the Cram{\'e}r-von Mises criterion reports the best performance with the other input devices for most cases, followed by the Parzen window density estimator.",
keywords = "Cram{\'e}r-von Mises criterion, Keystroke dynamics, Long and free text strings, R and A measure, User authentication, Various input devices",
author = "Pilsung Kang and Sungzoon Cho",
year = "2015",
month = "7",
day = "1",
doi = "10.1016/j.ins.2014.08.070",
language = "English",
volume = "308",
pages = "72--93",
journal = "Information Sciences",
issn = "0020-0255",
publisher = "Elsevier Inc.",

}

TY - JOUR

T1 - Keystroke dynamics-based user authentication using long and free text strings from various input devices

AU - Kang, Pilsung

AU - Cho, Sungzoon

PY - 2015/7/1

Y1 - 2015/7/1

N2 - Keystroke dynamics, which refers to the typing pattern of an individual, has been highlighted as a practical behavioral biometric feature that does not require any additional recognition device for strengthening user authentication or identification. However, research in the area of keystroke dynamics-based user authentication (KDA) has been primarily focused only on the short predefined text, such as identification (ID) and password, typed on a traditional personal computer (PC) keyboard. In this paper, we aim to explore the extendability of KDA by considering long and free text strings from various input devices. Three fundamental questions are raised about the dependence of authentication performance on (1) the type of input device, (2) the length of text strings, and (3) the type of authentication algorithm. Based on the experimental tests, we observe that (1) the usage of a PC keyboard reported the highest authentication accuracy, followed by a soft keyboard and a touch keyboard; (2) the authentication accuracy could be strengthened by increasing the length of either reference or test keystrokes; (3) the R + A and RA measures report the best performance with a PC keyboard, while the Cramér-von Mises criterion reports the best performance with the other input devices for most cases, followed by the Parzen window density estimator.

AB - Keystroke dynamics, which refers to the typing pattern of an individual, has been highlighted as a practical behavioral biometric feature that does not require any additional recognition device for strengthening user authentication or identification. However, research in the area of keystroke dynamics-based user authentication (KDA) has been primarily focused only on the short predefined text, such as identification (ID) and password, typed on a traditional personal computer (PC) keyboard. In this paper, we aim to explore the extendability of KDA by considering long and free text strings from various input devices. Three fundamental questions are raised about the dependence of authentication performance on (1) the type of input device, (2) the length of text strings, and (3) the type of authentication algorithm. Based on the experimental tests, we observe that (1) the usage of a PC keyboard reported the highest authentication accuracy, followed by a soft keyboard and a touch keyboard; (2) the authentication accuracy could be strengthened by increasing the length of either reference or test keystrokes; (3) the R + A and RA measures report the best performance with a PC keyboard, while the Cramér-von Mises criterion reports the best performance with the other input devices for most cases, followed by the Parzen window density estimator.

KW - Cramér-von Mises criterion

KW - Keystroke dynamics

KW - Long and free text strings

KW - R and A measure

KW - User authentication

KW - Various input devices

UR - http://www.scopus.com/inward/record.url?scp=84961367982&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84961367982&partnerID=8YFLogxK

U2 - 10.1016/j.ins.2014.08.070

DO - 10.1016/j.ins.2014.08.070

M3 - Article

AN - SCOPUS:84961367982

VL - 308

SP - 72

EP - 93

JO - Information Sciences

JF - Information Sciences

SN - 0020-0255

ER -