The reliability of user authentication through keystroke dynamics

S. Douhou; J.R. Magnus

The reliability of user authentication through keystroke dynamics

S. Douhou, J.R. Magnus

Research output: Contribution to journal › Article › Scientific › peer-review

Abstract

When typing on a keyboard a user can be authenticated through what he/she types (username, password), but also through how he/she types, that is, through keystroke dynamics. We study whether authentication through keystroke dynamics is sufficiently reliable as a security instrument to be used together with the more standard instruments. Based on a data set of 1254 participants who typed the same username and password, 20 times each, we develop a test statistic and obtain the power of our test. We conclude that keystroke dynamics can be a reliable security instrument for authentication, if used together with other instruments. It seems more suitable for authentication (verification) than for identification. Dwell times (how long a key is held pressed) are more discriminatory and therefore more powerful than flight times (time between consecutive press times).

Original language	English
Pages (from-to)	432-449
Journal	Statistica Neerlandica
Volume	63
Issue number	4
Publication status	Published - 2009

Fingerprint

User Authentication

Authentication

Password

Power of Test

Dwell Time

Test Statistic

Consecutive

Cite this

Douhou, S., & Magnus, J. R. (2009). The reliability of user authentication through keystroke dynamics. Statistica Neerlandica, 63(4), 432-449.

Douhou, S. ; Magnus, J.R. / The reliability of user authentication through keystroke dynamics. In: Statistica Neerlandica. 2009 ; Vol. 63, No. 4. pp. 432-449.

@article{cbef3968928e40879c183a0557a7d22e,

title = "The reliability of user authentication through keystroke dynamics",

abstract = "When typing on a keyboard a user can be authenticated through what he/she types (username, password), but also through how he/she types, that is, through keystroke dynamics. We study whether authentication through keystroke dynamics is sufficiently reliable as a security instrument to be used together with the more standard instruments. Based on a data set of 1254 participants who typed the same username and password, 20 times each, we develop a test statistic and obtain the power of our test. We conclude that keystroke dynamics can be a reliable security instrument for authentication, if used together with other instruments. It seems more suitable for authentication (verification) than for identification. Dwell times (how long a key is held pressed) are more discriminatory and therefore more powerful than flight times (time between consecutive press times).",

author = "S. Douhou and J.R. Magnus",

year = "2009",

language = "English",

volume = "63",

pages = "432--449",

journal = "Statistica Neerlandica",

issn = "0039-0402",

publisher = "Wiley-Blackwell",

number = "4",

}

Douhou, S & Magnus, JR 2009, 'The reliability of user authentication through keystroke dynamics', Statistica Neerlandica, vol. 63, no. 4, pp. 432-449.

The reliability of user authentication through keystroke dynamics. / Douhou, S.; Magnus, J.R.

In: Statistica Neerlandica, Vol. 63, No. 4, 2009, p. 432-449.

Research output: Contribution to journal › Article › Scientific › peer-review

TY - JOUR

T1 - The reliability of user authentication through keystroke dynamics

AU - Douhou, S.

AU - Magnus, J.R.

PY - 2009

Y1 - 2009

N2 - When typing on a keyboard a user can be authenticated through what he/she types (username, password), but also through how he/she types, that is, through keystroke dynamics. We study whether authentication through keystroke dynamics is sufficiently reliable as a security instrument to be used together with the more standard instruments. Based on a data set of 1254 participants who typed the same username and password, 20 times each, we develop a test statistic and obtain the power of our test. We conclude that keystroke dynamics can be a reliable security instrument for authentication, if used together with other instruments. It seems more suitable for authentication (verification) than for identification. Dwell times (how long a key is held pressed) are more discriminatory and therefore more powerful than flight times (time between consecutive press times).

AB - When typing on a keyboard a user can be authenticated through what he/she types (username, password), but also through how he/she types, that is, through keystroke dynamics. We study whether authentication through keystroke dynamics is sufficiently reliable as a security instrument to be used together with the more standard instruments. Based on a data set of 1254 participants who typed the same username and password, 20 times each, we develop a test statistic and obtain the power of our test. We conclude that keystroke dynamics can be a reliable security instrument for authentication, if used together with other instruments. It seems more suitable for authentication (verification) than for identification. Dwell times (how long a key is held pressed) are more discriminatory and therefore more powerful than flight times (time between consecutive press times).

M3 - Article

VL - 63

SP - 432

EP - 449

JO - Statistica Neerlandica

JF - Statistica Neerlandica

SN - 0039-0402

IS - 4

ER -

Douhou S, Magnus JR. The reliability of user authentication through keystroke dynamics. Statistica Neerlandica. 2009;63(4):432-449.