Abstract
Due to the rapid increase in the use of personal smart devices, more sensitive data is stored and viewed on these smart devices. This trend makes it easier for attackers to access confidential data by physically compromising (including stealing) these smart devices. Currently, most personal smart devices employ one of the one-time user authentication schemes, such as four-to-six digits, fingerprint or pattern-based schemes. These authentication schemes are often not good enough for securing personal smart devices because the attackers can easily extract all the confidential data from the smart device by breaking such schemes, or by keeping the authenticated session open on a physically compromised smart device. In addition, existing re-authentication or continuous authentication techniques for protecting personal smart devices use centralized architecture and require servers at a centralized location to train and update the learning model used for continuous authentication, which impose additional communication overhead. In this paper, an approach is presented to generating and updating the authentication model on the user's smart device with user's gestures, instead of a centralized server. There are two major advantages in this approach. One is that this approach continuously learns and authenticates finger gestures of the user in the background without requiring the user to provide specific gesture inputs. The other major advantage is to have better authentication accuracy by treating uninterrupted user finger gestures over a short time interval as a single gesture for continuous user authentication.
Original language | English (US) |
---|---|
Title of host publication | Proceedings - 2015 IEEE International Conference on Software Quality, Reliability and Security, QRS 2015 |
Publisher | Institute of Electrical and Electronics Engineers Inc. |
Pages | 219-226 |
Number of pages | 8 |
ISBN (Print) | 9781467379892 |
DOIs | |
State | Published - Sep 21 2015 |
Event | IEEE International Conference on Software Quality, Reliability and Security, QRS 2015 - Vancouver, Canada Duration: Aug 3 2015 → Aug 5 2015 |
Other
Other | IEEE International Conference on Software Quality, Reliability and Security, QRS 2015 |
---|---|
Country/Territory | Canada |
City | Vancouver |
Period | 8/3/15 → 8/5/15 |
Keywords
- adaptive continuous user authentication
- and user re-authentication
- reinforcement learning
- Touch-screen smart devices
ASJC Scopus subject areas
- Computer Networks and Communications
- Software