SocialAuth: Designing touch behavioral smartphone user authentication based on social networking applications

Weizhi Meng, Wenjuan Li, Lijun Jiang, Jianying Zhou

Research output: Chapter in book / Conference proceedingConference article published in proceeding or bookAcademic researchpeer-review

8 Citations (Scopus)

Abstract

Modern smartphones expressed an exponential growth and have become a personal assistant in people’s daily lives, i.e., keeping connected with peers. Users are willing to store their personal data even sensitive information on the phones, making these devices an attractive target for cyber-criminals. Due to the limitations of traditional authentication methods like Personal Identification Number (PIN), research has been moved to the design of touch behavioral authentication on smartphones. However, how to design a robust behavioral authentication in a long-term period remains a challenge due to behavioral inconsistency. In this work, we advocate that touch gestures could become more consistent when users interact with specific applications. In this work, we focus on social networking applications and design a touch behavioral authentication scheme called SocialAuth. In the evaluation, we conduct a user study with 50 participants and demonstrate that touch behavioral deviation under our scheme could be significantly decreased and kept relatively stable even after a long-term period, i.e., a single SVM classifier could achieve an average error rate of about 3.1% and 3.7% before and after two weeks, respectively.

Original languageEnglish
Title of host publicationICT Systems Security and Privacy Protection - 34th IFIP TC 11 International Conference, SEC 2019, Proceedings
EditorsGurpreet Dhillon, Fredrik Karlsson, Karin Hedström, André Zúquete
PublisherSpringer New York LLC
Pages180-193
Number of pages14
ISBN (Print)9783030223113
DOIs
Publication statusPublished - 2019
Externally publishedYes
Event34th IFIP TC 11 International Conference on Information Security and Privacy Protection, SEC 2019 - Lisbon, Portugal
Duration: 25 Jun 201927 Jun 2019

Publication series

NameIFIP Advances in Information and Communication Technology
Volume562
ISSN (Print)1868-4238
ISSN (Electronic)1868-422X

Conference

Conference34th IFIP TC 11 International Conference on Information Security and Privacy Protection, SEC 2019
Country/TerritoryPortugal
CityLisbon
Period25/06/1927/06/19

Keywords

  • Behavioral user authentication
  • Machine learning
  • Smartphone security
  • Social networking
  • Touch gestures
  • Usable security

ASJC Scopus subject areas

  • Information Systems
  • Computer Networks and Communications
  • Information Systems and Management

Fingerprint

Dive into the research topics of 'SocialAuth: Designing touch behavioral smartphone user authentication based on social networking applications'. Together they form a unique fingerprint.

Cite this