• DocumentCode
    1782785
  • Title

    TouchIn: Sightless two-factor authentication on multi-touch mobile devices

  • Author

    Jingchao Sun ; Rui Zhang ; Jinxue Zhang ; Yanchao Zhang

  • Author_Institution
    Sch. of Electr., Comput. & Energy Eng., Arizona State Univ., Phoenix, AZ, USA
  • fYear
    2014
  • fDate
    29-31 Oct. 2014
  • Firstpage
    436
  • Lastpage
    444
  • Abstract
    Mobile authentication is indispensable for preventing unauthorized access to multi-touch mobile devices. Existing mobile authentication techniques are often cumbersome to use and also vulnerable to shoulder-surfing and smudge attacks. This paper focuses on designing, implementing, and evaluating TouchIn, a two-factor authentication system on multi-touch mobile devices. TouchIn works by letting a user draw on the touchscreen with one or multiple fingers to unlock his mobile device, and the user is authenticated based on the geometric properties of his drawn curves as well as his behavioral and physiological characteristics. TouchIn allows the user to draw on arbitrary regions on the touchscreen without looking at it. This nice sightless feature makes TouchIn very easy to use and also robust to shoulder-surfing and smudge attacks. Comprehensive experiments on Android devices confirm the high security and usability of TouchIn.
  • Keywords
    mobile handsets; telecommunication security; Android devices; TouchIn; geometric properties; mobile authentication techniques; multitouch mobile devices; physiological characteristics; shoulder-surfing; sightless two-factor authentication; smudge attacks; two-factor authentication system; Authentication; Feature extraction; Geometry; Mobile communication; Mobile handsets; Shape;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Communications and Network Security (CNS), 2014 IEEE Conference on
  • Conference_Location
    San Francisco, CA
  • Type

    conf

  • DOI
    10.1109/CNS.2014.6997513
  • Filename
    6997513