Keystroke-dynamics authentication against synthetic forgeries

Author

Stefan, Deian ; Yao, Danfeng Daphne

Author_Institution

Dept. of Electr. Eng., Cooper Union, New York, NY, USA

fYear

2010

fDate

9-12 Oct. 2010

Firstpage

1

Lastpage

8

Abstract

We describe the use of keystroke-dynamics patterns for authentication and detecting infected hosts, and evaluate its robustness against forgery attacks. Specifically, we present a remote authentication framework called TUBA for monitoring a user´s typing patterns. We evaluate the robustness of TUBA through comprehensive experimental evaluation including two series of simulated bots. Support vector machine is used for classification. Our results based on 20 users´ keystroke data are reported. Our work shows that keystroke dynamics is robust against synthetic forgery attacks studied, where attacker draws statistical samples from a pool of available keystroke datasets other than the target. TUBA is particularly suitable for detecting extrusion in organizations and protecting the integrity of hosts in collaborative environments, as well as authentication.

Keywords

message authentication; pattern classification; software agents; support vector machines; collaborative environment; extrusion detection; host integrity protection; infected host detection; keystroke-dynamics authentication; remote authentication framework; simulated bots; support vector machine; synthetic forgery; telling human and bot apart; user typing pattern monitoring; Authentication; Data models; Feature extraction; Keyboards; Malware; Servers; Timing; Keystroke dynamics; authentication; forgery; malware detection;

fLanguage

English

Publisher

ieee

Conference_Titel

Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom), 2010 6th International Conference on

Conference_Location

Chicago, IL

Print_ISBN

978-963-9995-24-6

Type

conf

Filename

5766991