• DocumentCode
    3724003
  • Title

    Event-Driven Implicit Authentication for Mobile Access Control

  • Author

    Feng Yao;Suleiman Y. Yerima;BooJoong Kang;Sakir Sezer

  • Author_Institution
    Centre for Secure Inf. Technol., Queen´s Univ. Belfast, Belfast, UK
  • fYear
    2015
  • Firstpage
    248
  • Lastpage
    255
  • Abstract
    In order to protect user privacy on mobile devices, an event-driven implicit authentication scheme is proposed in this paper. Several methods of utilizing the scheme for recognizing legitimate user behavior are investigated. The investigated methods compute an aggregate score and a threshold in real-time to determine the trust level of the current user using real data derived from user interaction with the device. The proposed scheme is designed to: operate completely in the background, require minimal training period, enable high user recognition rate for implicit authentication, and prompt detection of abnormal activity that can be used to trigger explicitly authenticated access control. In this paper, we investigate threshold computation through standard deviation and EWMA (exponentially weighted moving average) based algorithms. The result of extensive experiments on user data collected over a period of several weeks from an Android phone indicates that our proposed approach is feasible and effective for lightweight real-time implicit authentication on mobile smartphones.
  • Keywords
    "Authentication","Context","Aggregates","Training","History","Mobile handsets","Browsers"
  • Publisher
    ieee
  • Conference_Titel
    Next Generation Mobile Applications, Services and Technologies, 2015 9th International Conference on
  • Print_ISBN
    978-1-4799-8660-6
  • Type

    conf

  • DOI
    10.1109/NGMAST.2015.47
  • Filename
    7373251