TY - JOUR
T1 - Design of double-cross-based smartphone unlock mechanism
AU - Li, Wenjuan
AU - Tan, Jiao
AU - Zhu, Nan
N1 - Funding Information:
The authors would like to thank all participants for their hard work during the user study.
Publisher Copyright:
© 2023 Elsevier Ltd
PY - 2023/6
Y1 - 2023/6
N2 - Due to the advanced features, smartphones have become an essential and widely adopted electronic device around the world, which can provide various benefits, such as online shopping, e-commerce payment, making friends via social media, email checking and more. Such devices make people's work and life more convenient and flexible, but how to secure the locally stored phone data is a big problem. With more sensitive or private data stored on these portable devices, there is a significant demand to safeguard smartphones from unauthorized access. Currently, one of the most straightforward and intuitive approaches is to implement an unlock mechanism that asks users to input a correct unlock pattern for authentication, e.g., Android unlock patterns. However, such unlock mechanism can be easily compromised when the unlock pattern is leaked. In this work, we advocate that combining behavioral features with unlock mechanisms is a promising solution, and propose a double-cross-based unlock scheme, called Double-X, which requires users to unlock the device by inputting two cross shapes on the selected dots. For authentication, users have to re-input the selected dots and draw the cross shapes. In the evaluation, we conduct two user studies with 100 participants in total to explore and validate the scheme performance, as compared with two similar unlock schemes. The experimental results indicate that under our scheme, users can reach good success rates with better feedback.
AB - Due to the advanced features, smartphones have become an essential and widely adopted electronic device around the world, which can provide various benefits, such as online shopping, e-commerce payment, making friends via social media, email checking and more. Such devices make people's work and life more convenient and flexible, but how to secure the locally stored phone data is a big problem. With more sensitive or private data stored on these portable devices, there is a significant demand to safeguard smartphones from unauthorized access. Currently, one of the most straightforward and intuitive approaches is to implement an unlock mechanism that asks users to input a correct unlock pattern for authentication, e.g., Android unlock patterns. However, such unlock mechanism can be easily compromised when the unlock pattern is leaked. In this work, we advocate that combining behavioral features with unlock mechanisms is a promising solution, and propose a double-cross-based unlock scheme, called Double-X, which requires users to unlock the device by inputting two cross shapes on the selected dots. For authentication, users have to re-input the selected dots and draw the cross shapes. In the evaluation, we conduct two user studies with 100 participants in total to explore and validate the scheme performance, as compared with two similar unlock schemes. The experimental results indicate that under our scheme, users can reach good success rates with better feedback.
KW - Behavioral authentication
KW - Cross shape
KW - Smartphone
KW - Touch dynamics
KW - Unlock mechanism
KW - User authentication
UR - http://www.scopus.com/inward/record.url?scp=85151351478&partnerID=8YFLogxK
U2 - 10.1016/j.cose.2023.103204
DO - 10.1016/j.cose.2023.103204
M3 - Journal article
AN - SCOPUS:85151351478
SN - 0167-4048
VL - 129
SP - 1
EP - 9
JO - Computers and Security
JF - Computers and Security
M1 - 103204
ER -