i can be you questioning the use of keystroke dynamics as biometrics n.
Skip this Video
Loading SlideShow in 5 Seconds..
I can be You: Questioning the use of Keystroke Dynamics as Biometrics PowerPoint Presentation
Download Presentation
I can be You: Questioning the use of Keystroke Dynamics as Biometrics

Loading in 2 Seconds...

play fullscreen
1 / 28

I can be You: Questioning the use of Keystroke Dynamics as Biometrics - PowerPoint PPT Presentation

  • Uploaded on

I can be You: Questioning the use of Keystroke Dynamics as Biometrics. Tey Chee Meng, Payas Gupta, Debin Gao. Ke Chen. Outline. Introduction Keystroke biometrics Exper ime ntal Design Experimental Results Conclusion. Authentication using Biometrics. Physiological biometric:

I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
Download Presentation

PowerPoint Slideshow about 'I can be You: Questioning the use of Keystroke Dynamics as Biometrics' - garima

An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.

- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
i can be you questioning the use of keystroke dynamics as biometrics

I can be You: Questioning the use of Keystroke Dynamics as Biometrics

Tey Chee Meng, Payas Gupta, Debin Gao

Ke Chen

  • Introduction
  • Keystroke biometrics
  • Experimental Design
  • Experimental Results
  • Conclusion
authentication using biometrics
Authentication using Biometrics
  • Physiological biometric:
    • facial features
    • hand geometry
    • Fingerprints
    • iris scans
  • Behavioral biometric:
    • Signatures
    • Handwriting
    • Typing patterns (i.e. keystroke dynamics)
is keystroke biometrics unique
Is Keystroke Biometrics Unique?
  • If imitation is possible, then keystroke dynamics would be unsuitable for use as a biometrics feature.
  • it is possible to imitate someone else’s keystroke typing if appropriate feedback is provided?
keystroke dynamics
Keystroke Dynamics

Keystroke dynamics refer to information about the typing pattern.

pressing and releasing of a keystroke pair (ka, kb) results in 4 timings which are of interest to keystroke biometrics systems

keystroke dynamics1
Keystroke Dynamics
  • Key-down time:
  • Key-up time:
  • four relative timings can be derived:
anomaly detector scoring1
Anomaly Detector Scoring
  • absolute deviation vector
anomaly detector scoring2
Anomaly Detector Scoring
  • Euclidean distance based anomaly score
  • Manhattan distance based anomaly score
anomaly detection threshold
Anomaly Detection Threshold
  • FRR: false rejection rate, decrease as threshold sets higher
  • FAR: false acceptance rate, increase as threshold sets higher
  • EER: equal error rate where FRR=FAR
experiment design
Experiment Design
  • Attack scenarios
    • the attacker is able to extract the victim pattern from a compromised biometrics database.
    • the attacker may be able to capture samples of the victim’s keystrokes as she is authenticating (e.g. by installing a key- logger).
choice of password
Choice of Password
  • “serndele”
    • minimize finger movements on a standard US keyboard.
  • “ths.ouR2”
    • chosen to maximize finger movements and therefore difficulty of typing.
experiment 1 e1
Experiment 1 (e1)
  • Training Data Collection

88 participants were asked to submit 200 samples for each of the two passwords using an existing keystroke dynamics based authentication system.

experiment 2 e2
Experiment 2 (e2)
  • Imitation using Euclidean distance

30 minutes imitation task:

84 participants played the role of attackers. 10 victims were randomly chosen from e1. Each attacker was randomly assigned one of the 10 victims, and was given the victim’s mean vector for. Attackers gets real-time feedback of the Euclidean distance based anomaly score.

experiment 3 e3a
Experiment 3 (e3a)
  • Investigate the additional imitation session with Euclidean distance

14 best attackers were chosen from e2 to perform the same imitation task in e2 for only 20 minutes.

experiment 4 e3b
Experiment 4 (e3b)
  • Investigate the imitation performance of highly motivated attackers in optimal environment

Feedback is based on full victim typing pattern Information (Manhattan distance and absolute deviation)

experiment results
Experiment Results
  • Result from e1: collision attack

given a target organization with 10 high value targets, if a team of 84 attackers were to be assembled, we expect to find on average, one attacker with the same typing pattern as one of the high value targets.

experiment results1
Experiment Results
  • Results from e2: Improvement in FAR after imitation training
experiment results2
Experiment Results
  • Results from e2: Effect of password difficulty

The differences in mean between the easier and the harder password suggest that passwords that are easier to type are also easier to imitate.

experiment results3
Experiment Results
  • Results from e2: effect of training duration

56% attackers took no more than 20 minutes to reach their b20 performance.

experiment results4
Experiment Results
  • Results from e3a:
    • 6 attackers improved their b20 FAR
    • 4 attackers unchanged
    • 4 attackers worsened
experiment results5
Experiment Results
  • Results from e3b:
experiment results6
Experiment Results
  • Factors affecting imitation outcome
    • Gender: male performs significantly better than females
    • Therefore there exists a weak correlation between the imitation outcome and the similarity between the attacker and victim’s typing pattern
    • Typing speed, keyboard, Number of trials per minute are not affecting factors
  • A user’s typing pattern can be imitated
    • Trained with incomplete model of the victim’s typing pattern, an attacker’s success rate is around 0.52
    • The best attacker increases FAR to 1 after training
    • When the number of attackers and victims are sizeable, chance of natural collision is significant
  • Easier passwords are easily imitated
  • Males are better imitators