Abstract

Continuous authentication has been proposed as a possible approach for passive and seamless user authentication, using sensor data comprising biometric, behavioral, and context-oriented characteristics. Since these are personal data being transmitted and are outside the control of the user, this approach causes privacy issues. Continuous authentication has security challenges concerning poor matching rates and susceptibility of replay attacks. The security issues are mainly poor matching rates and the problems of replay attacks. In this survey, we present an overview of continuous authentication and comprehensively discusses its different modes, and issues that these modes have related to security, privacy, and usability. A comparison of privacy-preserving approaches dealing with the privacy issues is provided, and lastly recommendations for secure, privacy-preserving, and user-friendly continuous authentication.

Highlights

  • Sensors 2021, 21, 5967. https://We are dependent on computing technology to store and process our personal data.We interact with devices in the form of smart-phones, cars, sensors, Internet of Things (IoT), and other devices

  • Regarding Question 3 in Section 1, and by considering the international standard organization (ISO) standard for biometric information protection ISO/international electrotechnical commission (IEC) 24745 [170], the security and privacy issues for continuous authentication can be mitigated by utilizing cryptographic techniques, such as homomorphic encryption with secure two-party computation and Zero-Knowledge Proofs (ZKP)

  • Continuous authentication modes suffer from significant security and privacy challenges; the utilization of homomorphic encryption combined with bloom filters can solve both security and privacy challenges

Read more

Summary

Introduction

We are dependent on computing technology to store and process our personal data. We interact with devices in the form of smart-phones, cars, sensors, Internet of Things (IoT), and other devices. A potential problem about session-oriented approaches is that if the user leaves the computer or the device for some time, a malicious user accessing the device in the meantime is not prevented from using it or any services that the user is logged onto This issue could be mitigated by security mechanisms that continuously re-authenticate the user during the session. Since continuous authentication mechanisms collect personal data, such as physiological, behavioral, and context-aware user data, this causes privacy concerns. This survey presents an overview of continuous authentication modes with performance comparison. The conclusion of the survey is stated in the last section

Preliminaries
Properties of Identification
Steps for Authentication and Data Processing
ML Algorithms
Performance
Modes of Continuous Authentication
Face and Voice as Biometrics
ECG and EEG Features as Biometrics
Motion Dynamics
Touch Dynamics
Stylometry Dynamics
Keystroke Dynamics
Eye Movement
Context-Aware Authentication
Security and Privacy Concerns
Continuous Authentication Cases
Threat Actor Assumptions
Security
Privacy Concerns
Security and Privacy Challenges in Machine Learning Algorithms
Attacks on Different Modes of Continuous Authentication
Usability and Other Issues
Modality-Specific Issues
Reduced Recognition Accuracy
Emotional States
Lack of Standards and Protocols
Power Consumption Issue
Privacy-Preserving Approaches
Cancelable Biometrics
Bloom Filters
Homomorphic Encryption
Secure Two-Party Computation
Zero-Knowledge Proofs
Comparison
Recommendations to Improve Usability
Related Surveys
Findings
Conclusions
Full Text
Paper version not known

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Privacy and Security Issues Due to Permissions Glut in Android System
Nikhil Chiluka ... Rajesh Eswarawaka
-
Nikhil Chiluka, et. al.Nikhil Chiluka ... Rajesh Eswarawaka
01 Jul 2018
Continuous user authentication using multimodal biometric traits with optimal feature level fusion
Annamalai Prakash ... Ranganayakulu Dhanalakshmi
International Journal of Biomedical Engineering and Technology | VOL. 34
Annamalai Prakash, et. al.Annamalai Prakash ... Ranganayakulu Dhanalakshmi
01 Jan 2020
Privacy-Preserving Continuous Authentication for Mobile and IoT Systems Using Warmup-Based Federated Learning
Mohamad Wazzeh ... Chamseddine Talhi
IEEE network | VOL. 37
Mohamad Wazzeh, et. al.Mohamad Wazzeh ... Chamseddine Talhi
01 May 2023
A survey of security and privacy issues in the Internet of Things from the layered context
Samundra Deep ... Dongjin Yu
Transactions on Emerging Telecommunications Technologies | VOL. 33
Samundra Deep, et. al.Samundra Deep ... Dongjin Yu
16 Mar 2020
View more papers

More From: Sensors (Basel, Switzerland)

Paper Title
Journal
Date
Author
Advancing Global Pose Refinement: A Linear, Parameter-Free Model for Closed Circuits via Quaternion Interpolation
Rubens Antônio Leite Benevides ... Luis Augusto Koenig Veiga
Sensors (Basel, Switzerland) | VOL. 24
Rubens Antônio Leite Benevides, et. al.Rubens Antônio Leite Benevides ... Luis Augusto Koenig Veiga
07 Aug 2024
A Survey on Sensor Failures in Autonomous Vehicles: Challenges and Solutions
Francisco Matos ... João Cunha
Sensors (Basel, Switzerland) | VOL. 24
Francisco Matos, et. al.Francisco Matos ... João Cunha
07 Aug 2024
Investigating the Impacts of Autonomous Vehicles on the Efficiency of Road Network and Traffic Demand: A Case Study of Qingdao, China
Chunguang Liu ... Mengru Shao
Sensors (Basel, Switzerland) | VOL. 24
Chunguang Liu, et. al.Chunguang Liu ... Mengru Shao
07 Aug 2024
Driving Attention State Detection Based on GRU-EEGNet
Xiaoli Wu ... Lirong Yan
Sensors (Basel, Switzerland) | VOL. 24
Xiaoli Wu, et. al.Xiaoli Wu ... Lirong Yan
07 Aug 2024
View more papers