Multi-touch Authentication Using Hand Geometry and Behavioral Information

Yunpeng Song, Zhongmin Cai, Zhi Li Zhang

Research output: Chapter in Book/Report/Conference proceedingConference contribution

75 Scopus citations

Abstract

In this paper we present a simple and reliable authentication method for mobile devices equipped with multi-touch screens such as smart phones, tablets and laptops. Users are authenticated by performing specially designed multi-touch gestures with one swipe on the touchscreen. During this process, both hand geometry and behavioral characteristics are recorded in the multi-touch traces and used for authentication. By combining both geometry information and behavioral characteristics, we overcome the problem of behavioral variability plaguing many behavior based authentication techniques - which often leads to less accurate authentication or poor user experience - while also ensuring the discernibility of different users with possibly similar handshapes. We evaluate the design of the proposed authentication method thoroughly using a large multi-touch dataset collected from 161 subjects with an elaborately designed procedure to capture behavior variability. The results demonstrate that the fusion of behavioral information with hand geometry features produces effective resistance to behavioral variability over time while at the same time retains discernibility. Our approach achieves EER of 5.84% with only 5 training samples and the performance is further improved to EER of 1.88% with enough training. Security analyses are also conducted to demonstrate that the proposed method is resilient against common smartphone authentication threats such as smudge attack, shoulder surfing attack and statistical attack. Finally, user acceptance of the method is illustrated via a usability study.

Original languageEnglish (US)
Title of host publication2017 IEEE Symposium on Security and Privacy, SP 2017 - Proceedings
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages357-372
Number of pages16
ISBN (Electronic)9781509055326
DOIs
StatePublished - Jun 23 2017
Event2017 IEEE Symposium on Security and Privacy, SP 2017 - San Jose, United States
Duration: May 22 2017May 24 2017

Publication series

NameProceedings - IEEE Symposium on Security and Privacy
ISSN (Print)1081-6011

Other

Other2017 IEEE Symposium on Security and Privacy, SP 2017
Country/TerritoryUnited States
CitySan Jose
Period5/22/175/24/17

Bibliographical note

Funding Information:
We would like to thank Prof. Ellen Bass for her valuable comments and careful proofreading. We would also like to thank Prof. Xiaohong Guan, Prof. Qinghua Zheng and Prof. Roy Maxion for their kind support of this work, and the anonymous reviewers for their helpful comments. We also acknowledge the help from Mr. Tao Hua, Ms. Meilan Liu and Hexiang Wang in the data collection process. This work is supported in part by NSFC grants 61175039, 61375040 and 61221063. Zhi-Li Zhang was supported in part by NSF grants CNS-1411636, DTRA grant HDTRA1-14-1-0040 and ARO MURI Award W911NF-12-1-0385.

Publisher Copyright:
© 2017 IEEE.

Keywords

  • Behavioral Variability
  • Hand Geometry
  • Mobile Authentication
  • Multi-touch Gesture
  • Usable Security

Fingerprint

Dive into the research topics of 'Multi-touch Authentication Using Hand Geometry and Behavioral Information'. Together they form a unique fingerprint.

Cite this