TouchIn: Sightless two-factor authentication on multi-touch mobile devices

Jingchao Sun, Rui Zhang, Jinxue Zhang, Yanchao Zhang

Research output: Chapter in Book/Report/Conference proceedingConference contribution

28 Scopus citations

Abstract

Mobile authentication is indispensable for preventing unauthorized access to multi-touch mobile devices. Existing mobile authentication techniques are often cumbersome to use and also vulnerable to shoulder-surfing and smudge attacks. This paper focuses on designing, implementing, and evaluating TouchIn, a two-factor authentication system on multi-touch mobile devices. TouchIn works by letting a user draw on the touchscreen with one or multiple fingers to unlock his mobile device, and the user is authenticated based on the geometric properties of his drawn curves as well as his behavioral and physiological characteristics. TouchIn allows the user to draw on arbitrary regions on the touchscreen without looking at it. This nice sightless feature makes TouchIn very easy to use and also robust to shoulder-surfing and smudge attacks. Comprehensive experiments on Android devices confirm the high security and usability of TouchIn.

Original languageEnglish (US)
Title of host publication2014 IEEE Conference on Communications and Network Security, CNS 2014
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages436-444
Number of pages9
ISBN (Electronic)9781479958900
DOIs
StatePublished - Dec 23 2014
Event2014 IEEE Conference on Communications and Network Security, CNS 2014 - San Francisco, United States
Duration: Oct 29 2014Oct 31 2014

Publication series

Name2014 IEEE Conference on Communications and Network Security, CNS 2014

Other

Other2014 IEEE Conference on Communications and Network Security, CNS 2014
CountryUnited States
CitySan Francisco
Period10/29/1410/31/14

ASJC Scopus subject areas

  • Computer Networks and Communications

Fingerprint Dive into the research topics of 'TouchIn: Sightless two-factor authentication on multi-touch mobile devices'. Together they form a unique fingerprint.

  • Cite this

    Sun, J., Zhang, R., Zhang, J., & Zhang, Y. (2014). TouchIn: Sightless two-factor authentication on multi-touch mobile devices. In 2014 IEEE Conference on Communications and Network Security, CNS 2014 (pp. 436-444). [6997513] (2014 IEEE Conference on Communications and Network Security, CNS 2014). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/CNS.2014.6997513