Password Hardening Based on Keystroke Dynamics
Date: February 2002
Publication: International Journal on Information Security, Volume 1, Number 2
Page(s): 69 - 83
Source 1: http://www.ece.cmu.edu/~reiter/papers/2002/IJIS.pdf
Source 2: http://springerlink.metapress.com/openurl.asp?genre=article&id=doi:10.1007/s102070100006 - Subscription or payment required
Abstract or Summary:
We present a novel approach to improving the security of passwords. In our approach, the legitimate userís typing patterns (e.g., durations of keystrokes and latencies between keystrokes) are combined with the userís password to generate a hardened password that is convincingly more secure than conventional passwords alone. In addition, our scheme automatically adapts to gradual changes in a userís typing patterns while maintaining the same hardened password across multiple logins, for use in file encryption or other applications requiring a long-term secret key. Using empirical data and a prototype implementation of our scheme, we give evidence that our approach is viable in practice, in terms of ease of use, improved security, and performance.
Do you have additional information to contribute regarding this research paper? If so, please email firstname.lastname@example.org with the details.