Individual typing style gives key to user authentication

May 16, 2012 By Niki Widdowson
Eesa Al Solami

Your typing style is as individual as your fingerprints. Being able to use typing style to identify a change in users could be a vital security and forensic support for organisations such as banks, the military and universities, says QUT PhD researcher Eesa Al Solami.

Mr. Al Solami, from QUT's School of and has developed an algorithmic system to capture and analyse the keystroke dynamics of keyboard users in a single session to enable user authentication throughout a typing session.

"Researchers have known for decades that people have unique typing styles but until now authentication has relied on the typing of the username and password and comparing it with current data.

"So while current computer systems can authorise the user at the start of a session they do not detect whether the current user is still the initial authorised user, a substitute user, or an pretending to be a valid user.

"This makes a system that can continuously check the identity of the user throughout a session necessary. My research has developed such a system called a continuous (CAS)."

Mr. Al Solami said his system had the ability to define a new global threshold for any user and so would not be affected by improvements or changes in a user's typing skill.

"It can detect significant changes in typing style for example, differences in the timing between characters," he said.

"The system does not need any predefining models from the username and password to authenticate authorized users. It would be of value in highly sensitive environments such as , government organizations and defence.

"Organizations could either terminate session or generate an alert when a change in user is detected."

Mr. Al Solami said the system could be extended to the typing styles on mobiles and tablets.

"It could also be used with online exams to deter collusion during a session," he said.

Explore further: Ride-sharing could cut cabs' road time by 30 percent

add to favorites email to friend print save as pdf

Related Stories

Better passwords get with the beat

May 17, 2011

No password is 100% secure. There are always ways and means for those with malicious intent to hack, crack or socially engineer access to a password. Indeed, there are more and more websites and databases compromised on a ...

The safe way to use one Internet password

Feb 25, 2010

(PhysOrg.com) -- A little-used Internet authentication system from the 1980s could provide the answer for enabling web users to securely log in only once per Internet session, a Queensland University of Technology researcher ...

Who goes there? Verifying identity online

Feb 17, 2012

We are all used to logging into networks where we have a unique identity, verified by the network server and associated with our account for other members of the network to see. Such an identity-based network system is useful ...

Recommended for you

Ride-sharing could cut cabs' road time by 30 percent

15 hours ago

Cellphone apps that find users car rides in real time are exploding in popularity: The car-service company Uber was recently valued at $18 billion, and even as it faces legal wrangles, a number of companies ...

Avatars make the Internet sign to deaf people

Aug 29, 2014

It is challenging for deaf people to learn a sound-based language, since they are physically not able to hear those sounds. Hence, most of them struggle with written language as well as with text reading ...

Chameleon: Cloud computing for computer science

Aug 26, 2014

Cloud computing has changed the way we work, the way we communicate online, even the way we relax at night with a movie. But even as "the cloud" starts to cross over into popular parlance, the full potential ...

User comments : 0