research-article

Public Access

AuthoRing: Wearable User-presence Authentication

Authors:

David KotzAuthors Info & Claims

WearSys '17: Proceedings of the 2017 Workshop on Wearable Systems and Applications

Pages 5 - 10

https://doi.org/10.1145/3089351.3089357

Published: 19 June 2017 Publication History

Abstract

A common log-in process at computers involves the entry of username and password; log out depends on the user to remember to log out, or a timeout to expire the user session. Once logged in, user sessions may be vulnerable to imposter attacks in which an impostor steps up to the user's unattended computer and inherits the user's access privilege. We propose a ring-based authentication system called "AuthoRing", which restricts the imposter attackers from generating new inputs at the computer's mouse and keyboard. During the log-in process, an eligible AuthoRing user wears a digital ring with accelerometers and wireless communication capability. When input is detected at the mouse or keyboard, the computer's AuthoRing system correlates hand-motion data received from the ring with the input data from the computer's window manager, and detects imposter attacks when these data are insufficiently correlated. We implemented the AuthoRing system and evaluated its security, efficiency, and usability; we found that imposter attacks can be effectively detected and the required operations happen quickly with negligible delays experienced by the user.

References

[1]

Human Bench Mark. http://www.humanbenchmark.com/tests/reactiontime.

[2]

Tinyduino. https://tiny-circuits.com/.

[3]

Banerjee, S. P., and Woodard, D. L. Biometric authentication and identification using keystroke dynamics: A survey. Journal of Pattern Recognition Research 7, 1 (2012), 116--139.

[4]

Chen, B., Yenamandra, V., and Srinivasan, K. Tracking keystrokes using wireless signals. In MobiSys (2015), pp. 31--44.

Digital Library

[5]

Chong, M. K., Marsden, G., and Gellersen, H. GesturePIN: using discrete gestures for associating mobile devices. In Proceedings of the International Conference on Human Computer Interaction with Mobile Devices and Services (Mobile HCI) (2010), pp. 261--264.

Digital Library

[6]

Cornelius, C., Peterson, R., Skinner, J., Halter, R., and Kotz, D. A wearable system that knows who wears it. In MobiSys (2014), pp. 55--67.

Digital Library

[7]

Corner, M. D., and Noble, B. D. Protecting applications with transient authentication. In MobiSys (2003), pp. 57--70.

Digital Library

[8]

Eberz, S., Rasmussen, K. B., Lenders, V., and Martinovic, I. Preventing lunchtime attacks: Fighting insider threats with eye movement biometrics. In NDSS (2015).

[9]

Gummeson, J., Priyantha, B., and Liu, J. An energy harvesting wearable ring platform for gesture input on surfaces. In MobiSys (2014), pp. 162--175.

Digital Library

[10]

Hermans, J., and Peeters, R. Realizing Pico: Finally no more passwords! IACR Cryptology ePrint Archive (2014), 519.

[11]

Landwehr, C. E. Protecting unattended computers without software. In ACSAC (1997), pp. 274--283.

Digital Library

[12]

Mare, S., Molina-Markham, A., Cornelius, C., Peterson, R., and Kotz, D. ZEBRA: Zero-effort bilateral recurring authentication. In IEEE S&P (2014), pp. 705--720.

Digital Library

[13]

Nakkabi, Y., Traoré, I., and Ahmed, A. A. E. Improving mouse dynamics biometric performance using variance reduction via extractors with separate features. IEEE Transactions on Systems, Man, and Cybernetics, Part A 40, 6 (2010), 1345--1353.

Digital Library

[14]

Nirjon, S., Gummeson, J., Gelb, D., and Kim, K.-H. TypingRing: A wearable ring platform for text input. In MobiSys (2015), pp. 227--239.

Digital Library

[15]

Shen, C., Cai, Z., Guan, X., Du, Y., and Maxion, R. User authentication through mouse dynamics. IEEE Transactions on Information Forensics and Security 8, 1 (Jan 2013), 16--30.

Digital Library

[16]

Shukla, D., Kumar, R., Serwadda, A., and Phoha, V. V. Beware, your hands reveal your secrets! In ACM CCS (2014), pp. 904--917.

Digital Library

Cited By

Nag AHassan MDas ASinha AChand NKar ASharma VAlkhayyat A(2024)Exploring the applications and security threats of Internet of Thing in the cloud computing paradigmTransactions on Emerging Telecommunications Technologies10.1002/ett.489735:4Online publication date: 8-Apr-2024
https://dl.acm.org/doi/10.1002/ett.4897
Iwakiri SMurao K(2023)User Authentication Method for Wearable Ring Devices using Active Acoustic SensingProceedings of the 2023 ACM International Symposium on Wearable Computers10.1145/3594738.3611357(17-21)Online publication date: 8-Oct-2023
https://dl.acm.org/doi/10.1145/3594738.3611357
Yang CChang CLiang D(2018)A Novel GMM-Based Behavioral Modeling Approach for Smartwatch-Based Driver AuthenticationSensors10.3390/s1804100718:4(1007)Online publication date: 28-Mar-2018
https://doi.org/10.3390/s18041007

Index Terms

AuthoRing: Wearable User-presence Authentication

Recommendations

Multi-factor biometrics for authentication: a false sense of security
MM&Sec '10: Proceedings of the 12th ACM workshop on Multimedia and security

Multi-factor biometric authentications have been proposed recently to strengthen security and/or privacy of biometric systems in addition to enhancing authentication accuracy. An important approach to multi-factor biometric authentication is to apply ...
Thinking Unveiled: An Inference and Correlation Model to Attack EEG Biometrics
Field Notes

Very few studies have explored linkages between physiological, such as electroencephalograph (EEG), and behavioral patterns, such as wrist movements. These linkages provide us a unique mechanism to predict one set of patterns from other related patterns. ...
Personal Authentication Mechanism Based on Finger Knuckle Print

For authentication purposes, the identification and verification of a user is done by biometric traits like finger print, face, iris and gait, etc. Among the various traits finger print is mostly used in commercial applications for recognizing user's ...

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

WearSys '17: Proceedings of the 2017 Workshop on Wearable Systems and Applications

June 2017

60 pages

ISBN:9781450349598

DOI:10.1145/3089351

Program Chairs:
Mi Zhang
Michigan State University, USA
,
Ashwin Ashok
Georgia State University, USA

Copyright © 2017 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

SIGMOBILE: ACM Special Interest Group on Mobility of Systems, Users, Data and Computing

In-Cooperation

SIGOPS: ACM Special Interest Group on Operating Systems

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 19 June 2017

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Funding Sources

NSF

Conference

MobiSys'17

Sponsor:

SIGMOBILE

MobiSys'17: The 15th Annual International Conference on Mobile Systems, Applications, and Services

June 19, 2017

New York, Niagara Falls, USA

Acceptance Rates

WearSys '17 Paper Acceptance Rate 9 of 9 submissions, 100%;

Overall Acceptance Rate 28 of 36 submissions, 78%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

3
Total Citations
View Citations
449
Total Downloads

Downloads (Last 12 months)48
Downloads (Last 6 weeks)4

Reflects downloads up to 24 Dec 2024

Other Metrics

View Author Metrics

Citations

Cited By

Nag AHassan MDas ASinha AChand NKar ASharma VAlkhayyat A(2024)Exploring the applications and security threats of Internet of Thing in the cloud computing paradigmTransactions on Emerging Telecommunications Technologies10.1002/ett.489735:4Online publication date: 8-Apr-2024
https://dl.acm.org/doi/10.1002/ett.4897
Iwakiri SMurao K(2023)User Authentication Method for Wearable Ring Devices using Active Acoustic SensingProceedings of the 2023 ACM International Symposium on Wearable Computers10.1145/3594738.3611357(17-21)Online publication date: 8-Oct-2023
https://dl.acm.org/doi/10.1145/3594738.3611357
Yang CChang CLiang D(2018)A Novel GMM-Based Behavioral Modeling Approach for Smartwatch-Based Driver AuthenticationSensors10.3390/s1804100718:4(1007)Online publication date: 28-Mar-2018
https://doi.org/10.3390/s18041007

View Options

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Media

Figures

Other

Tables

View Table of Contents