Advertisement

Implicit Continuous User Authentication Using Swipe Actions on Mobile Touch Screen with ANN Classifier

  • Christy James Jose
  • M. S. Rajasree
Conference paper
  • 46 Downloads

Abstract

Smart phones became the most trusted companion of men and women. Today a smart phone has all the important data within the phone memory or in the cloud which is directly accessible by the device. The sensitivity of these data varies from person to person. Commonly, the security of a smart phone lies with normal entry point authentication methods such as PIN and graphical passwords. These methods can be breached by shoulder surfing, smudge attack, etc. But the main point is that the device is not checking the genuineness of the user after the entry point authentication. Most users prefer simple GUI passwords or PIN or no password at all (Bonneau J, The science of guessing: analyzing an anonymized corpus of 70 million passwords. In: 2012 IEEE symposium on security and privacy, San Francisco, CA, pp 538–552, 2012). So a smart phone after the primary authentication can become a threat to losing sensitive and private data. In this work, we present an implicit continuous active authentication mechanism that will check the genuineness of the current user without any direct input. We would be using the touch screen swipe patterns that are being generated when reading a page or viewing the images in gallery of the phone. We are using the artificial neural network to recognize the genuine user. Result shows the proposed mechanism has an accuracy of 93.9% and an EER of 7%, and it is not a burden to the user as he is not supposed to make any deliberate inputs, the data generated from the normal usage is taken for authentication.

Keywords

Implicit authentication Information security Smart phone Swipe biometrics 

Abbreviations

ANN

Artificial Neural Network

PIN

Personal Identification Number

SVM

Support Vector Machine

KNN

K Nearest Neighbor

TP

True Positive

TN

True Negative

FP

False Positive

FN

False Negative

FAR

False Acceptance Rate

FRR

False Rejection Rate

EER

Equal Error Rate

csv

Comma Separated Value

GUI

Graphical User Interface

References

  1. 1.
    Bonneau J (2012) The science of guessing: analyzing an anonymized corpus of 70 million passwords. In: 2012 IEEE symposium on security and privacy, San Francisco, CA, pp 538–552CrossRefGoogle Scholar
  2. 2.
    Dutta S, Edited by Sonia Bhaskar, Increase in digital transactions in a year; mobile banking jumps 122%. Available at https://special.ndtv.com/cashless-bano-india-14/news-detail/india-sees-55-increase-in-digital-transactions-in-a-year-mobile-banking-jumps-122-1724624/7
  3. 3.
    Jakobsson M, Shi E, Golle P, Chow R (2009) Implicit authentication for mobile devices. In: Proceedings of the 4th USENIX conference on Hot topics in security, pp 9–19Google Scholar
  4. 4.
    Crawford (2010) “Keystroke dynamics: characteristics and opportunities” Privacy Security and Trust (PST). In: 2010 eighth annual international conference, pp 205–212Google Scholar
  5. 5.
    Jose CJ, Francis J, Rajasree MS (2015) Digraph approximation with an adaptation technique for mobile user authentication through keystroke dynamics. Int J Eng Adv Technol 5(1). ISSN: 2249–8958Google Scholar
  6. 6.
    Derawi FM, Bours P (2013) Gait and activity recognition using commercial phones. Comp Sec 39:137–144CrossRefGoogle Scholar
  7. 7.
    Feng et al Continuous mobile authentication using touchscreen gestures. In: 2012 IEEE Conference on Technologies for Homeland Security (HST), Waltham, MA, vol 2012, pp 451–456Google Scholar
  8. 8.
    Xu H, Zhou Y, Lyu MR (2014) Towards continuous and passive authentication via touch biometrics: an experimental study on smartphones. In: Proceedings of SOUPS, pp 187–198Google Scholar
  9. 9.
    Shen C, Zhang Y, Guan X, Maxion RA (2016) Performance analysis of touch-interaction behavior for active smartphone authentication. IEEE Trans Info For Sec 11(3):498–513CrossRefGoogle Scholar
  10. 10.
    Kumar R, Phoha VV, Serwadda A (2016) Continuous authentication of smartphone users by fusing typing swiping and phone movement patterns. In: Proceedings of IEEE BTAS, pp 1–8Google Scholar

Copyright information

© Springer Nature Switzerland AG 2020

Authors and Affiliations

  • Christy James Jose
    • 1
  • M. S. Rajasree
    • 1
  1. 1.Government Engineering CollegeThiruvananthapuramIndia

Personalised recommendations