Towards a User-Friendly and Secure Hand Shaking Authentication for Smartphones

Hand shaking authentication is a novel authentication method based on user behavior with mobile phone, however previous works commonly require users to repeat their actions dozens of times as dataset to train a machine learning model, causing unfriendly user experience. In this paper, we propose an efficient authentication method based on hand shaking, in which the user only needs to shake phones twice before use. The training set expands dynamically by adding samples when users successfully authenticate. A challenge is to achieve low FPR starting with very few training samples, which we referred as the cold start problem. In response, we present DTW-LSTM Online Stacking (DLOS), an ensemble authentication model which finely combines DTW with LSTM to create an accurate and robust classifier both on the cold start phase and the subsequent phase. The intuition is that DTW algorithm performs well enough with few samples while LSTM's performance improves significantly when the dataset grows. In DLOS, we introduce dataset_size φ as the meta-feature to online adjust weights of DTW and LSTM as the dataset grows. DTW plays a leading role in the cold start phase and LSTM dominates in the subsequent phase. Experimental results show that this method has a superior performance while saving the cost for usage, and it could effectively resist the shoulder surfing attack.

[1]  Ming Yang,et al.  DeepFace: Closing the Gap to Human-Level Performance in Face Verification , 2014, 2014 IEEE Conference on Computer Vision and Pattern Recognition.

[2]  Jürgen Schmidhuber,et al.  Long Short-Term Memory , 1997, Neural Computation.

[3]  Yuan Feng,et al.  Waving Authentication: Your Smartphone Authenticate You on Motion Gesture , 2015, CHI Extended Abstracts.

[4]  Keke Gai,et al.  Blend Arithmetic Operations on Tensor-Based Fully Homomorphic Encryption Over Real Numbers , 2018, IEEE Transactions on Industrial Informatics.

[5]  Shan Chang,et al.  ShakeIn: Secure User Authentication of Smartphones with Single-Handed Shakes , 2017, IEEE Transactions on Mobile Computing.

[6]  Zhi-Hua Zhou,et al.  Ensemble Methods: Foundations and Algorithms , 2012 .

[7]  Muttukrishnan Rajarajan,et al.  Adaptive Threshold Scheme for Touchscreen Gesture Continuous Authentication Using Sensor Trust , 2017, 2017 IEEE Trustcom/BigDataSE/ICESS.

[8]  Heinrich Hußmann,et al.  Touch me once and i know it's you!: implicit authentication based on touch screen patterns , 2012, CHI.

[9]  Joseph Bonneau,et al.  The Science of Guessing: Analyzing an Anonymized Corpus of 70 Million Passwords , 2012, 2012 IEEE Symposium on Security and Privacy.

[10]  Arun Ross,et al.  A Survey on Anti-Spoofing Schemes for Fingerprint Recognition Systems , 2014 .

[11]  Xiaodong Lin,et al.  User-Habit-Oriented Authentication Model: Toward Secure, User-Friendly Authentication for Mobile Devices , 2015, IEEE Transactions on Emerging Topics in Computing.

[12]  Zhen Wang,et al.  uWave: Accelerometer-based Personalized Gesture Recognition and Its Applications , 2009, PerCom.

[13]  Shahrokh Valaee,et al.  A Novel Accelerometer-based Gesture Recognition System by , 2010 .

[14]  Lei Yang,et al.  Unlocking Smart Phone through Handwaving Biometrics , 2015, IEEE Transactions on Mobile Computing.

[15]  Timo Pylvänäinen,et al.  Accelerometer Based Gesture Recognition Using Continuous HMMs , 2005, IbPRIA.

[16]  Joseph Sill,et al.  Feature-Weighted Linear Stacking , 2009, ArXiv.

[17]  Zenggang Xiong,et al.  Privacy-preserving multi-channel communication in Edge-of-Things , 2018, Future Gener. Comput. Syst..

[18]  Shridatt Sugrim,et al.  User-generated free-form gestures for authentication: security and memorability , 2014, MobiSys.

[19]  Sven G. Kratz,et al.  AirAuth: evaluating in-air hand gestures for authentication , 2014, MobileHCI '14.

[20]  Kazuya Murao,et al.  Early gesture recognition method with an accelerometer , 2015, Int. J. Pervasive Comput. Commun..

[21]  Yoshua Bengio,et al.  An Empirical Investigation of Catastrophic Forgeting in Gradient-Based Neural Networks , 2013, ICLR.

[22]  Joseph B. Kruskall,et al.  The Symmetric Time-Warping Problem : From Continuous to Discrete , 1983 .