A graphical-based password keystroke dynamic authentication system for touch screen handheld mobile devices

Research output: Contribution to journalArticle

71 Citations (Scopus)

Abstract

Since touch screen handheld mobile devices have become widely used, people are able to access various data and information anywhere and anytime. Most user authentication methods for these mobile devices use PIN-based (Personal Identification Number) authentication, since they do not employ a standard QWERTY keyboard for conveniently entering text-based passwords. However, PINs provide a small password space size, which is vulnerable to attacks. Many studies have employed the KDA (Keystroke Dynamic-based Authentication) system, which is based on keystroke time features to enhance the security of PIN-based authentication. Unfortunately, unlike the text-based password KDA systems in QWERTY keyboards, different keypad sizes or layouts of mobile devices affect the PIN-based KDA system utility. This paper proposes a new graphical-based password KDA system for touch screen handheld mobile devices. The graphical password enlarges the password space size and promotes the KDA utility in touch screen handheld mobile devices. In addition, this paper explores a pressure feature, which is easy to use in touch screen handheld mobile devices, and applies it in the proposed system. The experiment results show: (1) EER is 12.2% in the graphical-based password KDA proposed system. Compared with related schemes in mobile devices, this effectively promotes KDA system utility; (2) EER is reduced to 6.9% when the pressure feature is used in the proposed system. The accuracy of authenticating keystroke time and pressure features is not affected by inconsistent keypads since the graphical passwords are entered via an identical size (50 mm × 60 mm) human-computer interface for satisfying the lowest touch screen size and a GUI of this size is displayed on all mobile devices.

Original languageEnglish
Pages (from-to)1157-1165
Number of pages9
JournalJournal of Systems and Software
Volume85
Issue number5
DOIs
Publication statusPublished - 2012 Jan 1

Fingerprint

Touch screens
Mobile devices
Authentication
Computer keyboards
Graphical user interfaces
Interfaces (computer)

All Science Journal Classification (ASJC) codes

  • Software
  • Information Systems
  • Hardware and Architecture

Cite this

@article{6debbc25294640a1adda852da9f13283,
title = "A graphical-based password keystroke dynamic authentication system for touch screen handheld mobile devices",
abstract = "Since touch screen handheld mobile devices have become widely used, people are able to access various data and information anywhere and anytime. Most user authentication methods for these mobile devices use PIN-based (Personal Identification Number) authentication, since they do not employ a standard QWERTY keyboard for conveniently entering text-based passwords. However, PINs provide a small password space size, which is vulnerable to attacks. Many studies have employed the KDA (Keystroke Dynamic-based Authentication) system, which is based on keystroke time features to enhance the security of PIN-based authentication. Unfortunately, unlike the text-based password KDA systems in QWERTY keyboards, different keypad sizes or layouts of mobile devices affect the PIN-based KDA system utility. This paper proposes a new graphical-based password KDA system for touch screen handheld mobile devices. The graphical password enlarges the password space size and promotes the KDA utility in touch screen handheld mobile devices. In addition, this paper explores a pressure feature, which is easy to use in touch screen handheld mobile devices, and applies it in the proposed system. The experiment results show: (1) EER is 12.2{\%} in the graphical-based password KDA proposed system. Compared with related schemes in mobile devices, this effectively promotes KDA system utility; (2) EER is reduced to 6.9{\%} when the pressure feature is used in the proposed system. The accuracy of authenticating keystroke time and pressure features is not affected by inconsistent keypads since the graphical passwords are entered via an identical size (50 mm × 60 mm) human-computer interface for satisfying the lowest touch screen size and a GUI of this size is displayed on all mobile devices.",
author = "Ting-Yi  Chang and Tsai, {Cheng Jung} and Lin, {Jyun Hao}",
year = "2012",
month = "1",
day = "1",
doi = "10.1016/j.jss.2011.12.044",
language = "English",
volume = "85",
pages = "1157--1165",
journal = "Journal of Systems and Software",
issn = "0164-1212",
publisher = "Elsevier Inc.",
number = "5",

}

A graphical-based password keystroke dynamic authentication system for touch screen handheld mobile devices. / Chang, Ting-Yi ; Tsai, Cheng Jung; Lin, Jyun Hao.

In: Journal of Systems and Software, Vol. 85, No. 5, 01.01.2012, p. 1157-1165.

Research output: Contribution to journalArticle

TY - JOUR

T1 - A graphical-based password keystroke dynamic authentication system for touch screen handheld mobile devices

AU - Chang, Ting-Yi 

AU - Tsai, Cheng Jung

AU - Lin, Jyun Hao

PY - 2012/1/1

Y1 - 2012/1/1

N2 - Since touch screen handheld mobile devices have become widely used, people are able to access various data and information anywhere and anytime. Most user authentication methods for these mobile devices use PIN-based (Personal Identification Number) authentication, since they do not employ a standard QWERTY keyboard for conveniently entering text-based passwords. However, PINs provide a small password space size, which is vulnerable to attacks. Many studies have employed the KDA (Keystroke Dynamic-based Authentication) system, which is based on keystroke time features to enhance the security of PIN-based authentication. Unfortunately, unlike the text-based password KDA systems in QWERTY keyboards, different keypad sizes or layouts of mobile devices affect the PIN-based KDA system utility. This paper proposes a new graphical-based password KDA system for touch screen handheld mobile devices. The graphical password enlarges the password space size and promotes the KDA utility in touch screen handheld mobile devices. In addition, this paper explores a pressure feature, which is easy to use in touch screen handheld mobile devices, and applies it in the proposed system. The experiment results show: (1) EER is 12.2% in the graphical-based password KDA proposed system. Compared with related schemes in mobile devices, this effectively promotes KDA system utility; (2) EER is reduced to 6.9% when the pressure feature is used in the proposed system. The accuracy of authenticating keystroke time and pressure features is not affected by inconsistent keypads since the graphical passwords are entered via an identical size (50 mm × 60 mm) human-computer interface for satisfying the lowest touch screen size and a GUI of this size is displayed on all mobile devices.

AB - Since touch screen handheld mobile devices have become widely used, people are able to access various data and information anywhere and anytime. Most user authentication methods for these mobile devices use PIN-based (Personal Identification Number) authentication, since they do not employ a standard QWERTY keyboard for conveniently entering text-based passwords. However, PINs provide a small password space size, which is vulnerable to attacks. Many studies have employed the KDA (Keystroke Dynamic-based Authentication) system, which is based on keystroke time features to enhance the security of PIN-based authentication. Unfortunately, unlike the text-based password KDA systems in QWERTY keyboards, different keypad sizes or layouts of mobile devices affect the PIN-based KDA system utility. This paper proposes a new graphical-based password KDA system for touch screen handheld mobile devices. The graphical password enlarges the password space size and promotes the KDA utility in touch screen handheld mobile devices. In addition, this paper explores a pressure feature, which is easy to use in touch screen handheld mobile devices, and applies it in the proposed system. The experiment results show: (1) EER is 12.2% in the graphical-based password KDA proposed system. Compared with related schemes in mobile devices, this effectively promotes KDA system utility; (2) EER is reduced to 6.9% when the pressure feature is used in the proposed system. The accuracy of authenticating keystroke time and pressure features is not affected by inconsistent keypads since the graphical passwords are entered via an identical size (50 mm × 60 mm) human-computer interface for satisfying the lowest touch screen size and a GUI of this size is displayed on all mobile devices.

UR - http://www.scopus.com/inward/record.url?scp=84862870615&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84862870615&partnerID=8YFLogxK

U2 - 10.1016/j.jss.2011.12.044

DO - 10.1016/j.jss.2011.12.044

M3 - Article

AN - SCOPUS:84862870615

VL - 85

SP - 1157

EP - 1165

JO - Journal of Systems and Software

JF - Journal of Systems and Software

SN - 0164-1212

IS - 5

ER -