BehavioCog

an observation resistant authentication scheme

Jagmohan Chauhan*, Benjamin Zi Hao Zhao, Hassan Jameel Asghar, Jonathan Chan, Mohamed Ali Kaafar

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference proceeding contribution

Abstract

We propose that by integrating behavioural biometric gestures—such as drawing figures on a touch screen—with challenge-response based cognitive authentication schemes, we can benefit from the properties of both. On the one hand, we can improve the usability of existing cognitive schemes by significantly reducing the number of challenge-response rounds by (partially) relying on the hardness of mimicking carefully designed behavioural biometric gestures. On the other hand, the observation resistant property of cognitive schemes provides an extra layer of protection for behavioural biometrics; an attacker is unsure if a failed impersonation is due to a biometric failure or a wrong response to the challenge. We design and develop a prototype of such a “hybrid” scheme, named BehavioCog. To provide security close to a 4-digit PIN—one in 10,000 chance to impersonate—we only need two challenge-response rounds, which can be completed in less than 38, s on average (as estimated in our user study), with the advantage that unlike PINs or passwords, the scheme is secure under observation.

Original languageEnglish
Title of host publicationFinancial Cryptography and Data Security
Subtitle of host publication21st International Conference, FC 2017, Revised Selected Papers
EditorsAggelos Kiayias
PublisherSpringer, Springer Nature
Pages39-58
Number of pages20
Volume10322 LNCS
ISBN (Electronic)9783319709727
ISBN (Print)9783319709710
DOIs
Publication statusPublished - 2017
Externally publishedYes
Event21st International Conference on Financial Cryptography and Data Security, FC 2017 - Sliema, Malta
Duration: 3 Apr 20177 Apr 2017

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume10322 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference21st International Conference on Financial Cryptography and Data Security, FC 2017
CountryMalta
CitySliema
Period3/04/177/04/17

Fingerprint Dive into the research topics of 'BehavioCog: an observation resistant authentication scheme'. Together they form a unique fingerprint.

  • Cite this

    Chauhan, J., Zhao, B. Z. H., Asghar, H. J., Chan, J., & Kaafar, M. A. (2017). BehavioCog: an observation resistant authentication scheme. In A. Kiayias (Ed.), Financial Cryptography and Data Security: 21st International Conference, FC 2017, Revised Selected Papers (Vol. 10322 LNCS, pp. 39-58). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 10322 LNCS). Springer, Springer Nature. https://doi.org/10.1007/978-3-319-70972-7_3