The reliability of user authentication through keystroke dynamics

S. Douhou, J.R. Magnus

Research output: Contribution to journalArticleScientificpeer-review

Abstract

When typing on a keyboard a user can be authenticated through what he/she types (username, password), but also through how he/she types, that is, through keystroke dynamics. We study whether authentication through keystroke dynamics is sufficiently reliable as a security instrument to be used together with the more standard instruments. Based on a data set of 1254 participants who typed the same username and password, 20 times each, we develop a test statistic and obtain the power of our test. We conclude that keystroke dynamics can be a reliable security instrument for authentication, if used together with other instruments. It seems more suitable for authentication (verification) than for identification. Dwell times (how long a key is held pressed) are more discriminatory and therefore more powerful than flight times (time between consecutive press times).
Original languageEnglish
Pages (from-to)432-449
JournalStatistica Neerlandica
Volume63
Issue number4
Publication statusPublished - 2009

Fingerprint

User Authentication
Authentication
Password
Power of Test
Dwell Time
Test Statistic
Consecutive

Cite this

Douhou, S. ; Magnus, J.R. / The reliability of user authentication through keystroke dynamics. In: Statistica Neerlandica. 2009 ; Vol. 63, No. 4. pp. 432-449.
@article{cbef3968928e40879c183a0557a7d22e,
title = "The reliability of user authentication through keystroke dynamics",
abstract = "When typing on a keyboard a user can be authenticated through what he/she types (username, password), but also through how he/she types, that is, through keystroke dynamics. We study whether authentication through keystroke dynamics is sufficiently reliable as a security instrument to be used together with the more standard instruments. Based on a data set of 1254 participants who typed the same username and password, 20 times each, we develop a test statistic and obtain the power of our test. We conclude that keystroke dynamics can be a reliable security instrument for authentication, if used together with other instruments. It seems more suitable for authentication (verification) than for identification. Dwell times (how long a key is held pressed) are more discriminatory and therefore more powerful than flight times (time between consecutive press times).",
author = "S. Douhou and J.R. Magnus",
year = "2009",
language = "English",
volume = "63",
pages = "432--449",
journal = "Statistica Neerlandica",
issn = "0039-0402",
publisher = "Wiley-Blackwell",
number = "4",

}

Douhou, S & Magnus, JR 2009, 'The reliability of user authentication through keystroke dynamics', Statistica Neerlandica, vol. 63, no. 4, pp. 432-449.

The reliability of user authentication through keystroke dynamics. / Douhou, S.; Magnus, J.R.

In: Statistica Neerlandica, Vol. 63, No. 4, 2009, p. 432-449.

Research output: Contribution to journalArticleScientificpeer-review

TY - JOUR

T1 - The reliability of user authentication through keystroke dynamics

AU - Douhou, S.

AU - Magnus, J.R.

PY - 2009

Y1 - 2009

N2 - When typing on a keyboard a user can be authenticated through what he/she types (username, password), but also through how he/she types, that is, through keystroke dynamics. We study whether authentication through keystroke dynamics is sufficiently reliable as a security instrument to be used together with the more standard instruments. Based on a data set of 1254 participants who typed the same username and password, 20 times each, we develop a test statistic and obtain the power of our test. We conclude that keystroke dynamics can be a reliable security instrument for authentication, if used together with other instruments. It seems more suitable for authentication (verification) than for identification. Dwell times (how long a key is held pressed) are more discriminatory and therefore more powerful than flight times (time between consecutive press times).

AB - When typing on a keyboard a user can be authenticated through what he/she types (username, password), but also through how he/she types, that is, through keystroke dynamics. We study whether authentication through keystroke dynamics is sufficiently reliable as a security instrument to be used together with the more standard instruments. Based on a data set of 1254 participants who typed the same username and password, 20 times each, we develop a test statistic and obtain the power of our test. We conclude that keystroke dynamics can be a reliable security instrument for authentication, if used together with other instruments. It seems more suitable for authentication (verification) than for identification. Dwell times (how long a key is held pressed) are more discriminatory and therefore more powerful than flight times (time between consecutive press times).

M3 - Article

VL - 63

SP - 432

EP - 449

JO - Statistica Neerlandica

JF - Statistica Neerlandica

SN - 0039-0402

IS - 4

ER -