Abstract
Mobile devices, particularly the touch screen mobile devices, are increasingly used to store and access private and sensitive data or services, and this has led to an increased demand for more secure and usable security services, one of which is user authentication. Currently, mobile device authentication services mainly use a knowledge-based method, e.g. a PIN-based authentication method, and, in some cases, a fingerprint-based authentication method is also supported. The knowledge-based method is vulnerable to impersonation attacks, while the fingerprint-based method can be unreliable sometimes. To overcome these limitations and to make the authentication service more secure and reliable for touch screen mobile device users, we have investigated the use of touch dynamics biometrics as a mobile device authentication solution by designing, implementing and evaluating a touch dynamics authentication method. This paper describes the design, implementation, and evaluation of this method, the acquisition of raw touch dynamics data, the use of the raw data to obtain touch dynamics features, and the training of the features to build an authentication model for user identity verification. The evaluation results show that by integrating the touch dynamics authentication method into the PIN-based authentication method, the protection levels against impersonation attacks is greatly enhanced. For example, if a PIN is compromised, the success rate of an impersonation attempt is drastically reduced from 100% (if only a 4-digit PIN is used) to 9.9% (if both the PIN and the touch dynamics are used).
Highlights
Mobile devices have become a preferred gadget for users to access information and digital services, and stay connected
Some of the touch dynamics samples acquired from these subjects are used as training samples, in which these samples are used by Model training unit (MTU) to generate authentication models
The pressure size (PS) values are determined by several factors such as: (i) the physical size of the fingertip used to perform a touch action press (TAP); (ii) the amount of force exerted during a TAP; and (iii) the fingertip position or angle during a TAP
Summary
Mobile devices have become a preferred gadget for users to access information and digital services, and stay connected. The increased usage and dependence on these devices indicate that they increasingly process and store confidential and sensitive data. As more sensitive data are stored in, or accessible from, mobile devices, the risk and cost of losing these data are becoming higher. More stringent security measures should be embedded into mobile devices. One of these measures is user authentication. User authentication is the first line of defence in any computing system (platform or device). In a mobile device context, authentication is mostly achieved via a
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
