动态实时身份认证的方法研究

doi:10.11959/j.issn.2909-109x.2016.00040

Abstract

Abstract:

To solve the problem organization’s insider threats which was brought by internal staff through identity spoofing. A method of dynamic real-time authentication was presented. By faking exceptions of mouse to build dynamic authentication, when continuously consecutive authentication were abnormal, user was forced into fixed scene certification which was building of memory game. An identity verification experiment, in which 15 participants were involved, showed that the performance of proposed method was encouraging with FAR of 1.8% and FRR of 3.0% and authentication time of 8.12 s for authentication. The experiment shows that the method is not only real-time but also has a better user experience and accuracy.

Key words: insider threat, identity authentication, identity monitoring, SVM, mouse dynamics

CLC Number:

TP309

Chuan-wu MAO,Yang CHENG,Wen-ming YU. Method of dynamic real-time authentication[J]. Chinese Journal of Network and Information Security, 2016, 2(3): 76-85.

Figures/Tables 10

References 14

[2]	CHEN X J , XU F , XU R , et al. A practical real-time authentication system with identity tracking based on mouse dynamics[C]// IEEE INFOCOM.c 2014: 121-122.
[3]	CHEN X J , FANG B X , TAN Q F et al. Inferring attack intent of malicious insider based on probabilistic attack graph model[J]. Chinese Journal of Computers, 2014,37(1): 62-72.
[4]	魏梓丞 . 面向身份伪冒的主机异常行为检测[D]. 北京:北京邮电大学 2014.
	WEI Z C . Abnormal behavior detection of host computer for identity based intrusion detection[D]. Beijing:Beijing University of Posts and Telecommunications 2014.
[5]	陈小军, 时金桥, 徐菲 , 等. 面向内部威胁的最优安全策略算法研究[J]. 计算机研究与进展 2014: 51 （7） 1565-1577.
	CHEN X J , SHI J Q , XU F , et al. Research on the optimal security policy algorithm for internal threats[C]// Computer Research and Development, 2014, 51 （7） 1565-1577.
[6]	ZHENG N , PALOSKL A , WANG H . An efficient user verification system via mouse movements[C]// ACM Conference on Computer& Communications Security.c 2011: 139-150.
[7]	PUSARA M , BRODLEY C E . User re-authentication via mouse movements[C]// Workshop on Visualization & Data Mining for Computer Security.c 2004: 1-8.
[8]	AHMED A , TRAORE I . Detecting computer Intrusions using behavioral biometrics[C]// The third Annual Conference on Privacy, Security and Trust.c 2005: 91-98.
[9]	GAMBOA H , FRED A . A behavioral biometric system based on human-computer interaction[C]// The International Society for Optical Engineering.c 2004: 381-392.
[10]	房超, 蔡忠闽, 沈超 , 等. 基于鼠标动力学模型的用户身份认证与监控[J]. 西安交通大学学报 2008, 10 （40） 1235-1239.
	FANG C , CAI Z M , SHEN C , et al. Authentication and monitoring of user identities based on mouse dynamics[J]. Journal of Xi'an Jiaotong University, 2008, 10 （40） 1235-1239.
[11]	沈超, 蔡忠闽, 管晓宏 , 等. 基于鼠标行为特征的用户身份认证与监控[J]. 通信学报 2010, 31 （7） 68-75.
	SHEN C , CAI Z M , GUAN X H , et al. User identity authentication and monitoring based on the behavior of the mouse[J]. Journal of Communication, 2010, 31 （7） 68-75.
[12]	王森, 蔡忠闽, 沈超 , 等. 行为截获技术对鼠标动力学身份认证的影响[J]. 微电子学与计算机 2013, 30 （4） 14-21.
	WANG S , CAI Z M , SHEN C , et al. The influence of the technology on the dynamic identity authentication of the mouse[J]. MiCroelectronics and Computer, 2013, 30 （4） 14-21.
[13]	王鑫, 王梦莹, 梁金, . 基于鼠标键盘行为的身份认证[J]. 中国教育技术装备, 2014 （22）: 50-53.
	WANG X , WANG M Y , LIANG J . Identity authentication based on the behavior of the mouse and keyboard[J]. China Educational Technology and Equipment, 2014 （22）: 50-53.
[1]	CHEN X J , SHI J Q , XU R , et al. PAITS: detect masquerader via short-lived interventional mouse dynamics[M]. Berlin: Springer, 2014: 231-242.
[14]	WEI Z , CHEN X , PU Y et al. A real-time authentication method based on cursor-hidden scene[J]. International Workshop on Cloud Computing & Information Security, 2013, 52 （1391）: 346-350.

Metrics

Recommended 0

No Suggested Reading articles found!

参数类型	参数描述	特征维数编号
鼠标移动方向	起始方向，结束方向，中间途经方向统计	1，2，3～10
鼠标轨迹曲率	轨迹转弯处的曲率均值，转弯个数	11，12
鼠标移动距离	X、Y方向均值，X、Y方向方差，起止点距离	13、14，15、16，17
鼠标移动速度	X方向速度均值、方差、极大值、极小值，Y方向速度均值、方差、极大值、	18～21，22～25，26～29
	极小值，极值次数

参数类型	参数描述	特征维数编号
鼠标左键单击	单击次数，单击到抬起的时间均值、方差	30,31～32
鼠标移动时间	完成整个拼图的时间	33
鼠标移动距离	图片每块的拖动时间及距离（每张图分为8块）	34～41,42～49

用户	动态场景		固定场景		全场景		平均认证时间/s
用户	FAR	FRR	FAR	FRR	FAR	FRR	平均认证时间/s
用户1	3.3%	4.6%	0.8%	1.7%	1.6%	2.3%	8.74
用户2	3.0%	4.4%	1.1%	2.1%	2.3%	3.1%	7.23
用户3	2.5%	3.9%	0.7%	2.3%	1.7%	2.7%	8.26
用户4	2.6%	3.7%	0.7%	1.7%	1.5%	2.9%	7.67
用户5	3.0%	3.9%	1.5%	2.7%	1.9%	3.1%	7.70
15位用户平均	3.1%	4.2%	1.2%	2.4%	1.8%	3.0%	8.12

Method of dynamic real-time authentication

RichHTML

PDF下载

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 10

References 14

Related Articles 14

Metrics

Recommended 0

[1]	Guanyun FENG, Cai FU, Jianqiang LYU, Lansheng HAN. Insider threat detection based on operational attention and data augmentation [J]. Chinese Journal of Network and Information Security, 2023, 9(3): 102-112.
[2]	Cong YI, Jun HU. Novel continuous identity authentication method based on mouse behavior [J]. Chinese Journal of Network and Information Security, 2022, 8(5): 179-188.
[3]	Guanqun YANG, Yin LIU, Hao XU, Hongwei XING, Jianhui ZHANG, Entang LI. Credible distributed identity authentication system of microgrid based on blockchain [J]. Chinese Journal of Network and Information Security, 2021, 7(6): 88-98.
[4]	Yueyang YE, Xinglan ZHANG. Research on anonymous identity authentication technology in Fabric [J]. Chinese Journal of Network and Information Security, 2021, 7(3): 134-140.
[5]	Hao WANG,Tianhao WU,Konglin ZHU,Lin ZHANG. Anonymous vehicle authentication scheme based on blockchain technology in the intersection scenario [J]. Chinese Journal of Network and Information Security, 2020, 6(5): 27-35.
[6]	Yingying CHEN,Feng ZHANG,Wenbao JIANG,Xu ZHOU. P2P network identity authentication mechanism based on trusted alliance [J]. Chinese Journal of Network and Information Security, 2020, 6(2): 77-86.
[7]	Shudi CHEN,Youwen ZHU. Shoulder-surfing resistant PIN-entry method [J]. Chinese Journal of Network and Information Security, 2019, 5(1): 87-93.
[8]	Qiuhan WU,Wei HU. Design of identity authentication agreement in mobile terminal based on SM2 algorithm and blockchain [J]. Chinese Journal of Network and Information Security, 2018, 4(9): 60-65.
[9]	Bin ZHANG,Zihao LIU,Shuqin DONG,Lixun LI. App-DDoS detection method using partial binary tree based SVM algorithm [J]. Chinese Journal of Network and Information Security, 2018, 4(3): 24-34.
[10]	. Research of a spam filter based on improved naive Bayes algorithm [J]. Chinese Journal of Network and Information Security, 2017, 3(3): 64-70.
[11]	Hui ZHANG,Cheng LIU. Anomaly intrusion detection based on modified SVM [J]. Chinese Journal of Network and Information Security, 2016, 2(8): 68-73.
[12]	Ren-ji HUANG,Xiao-ping WU,Hong-cheng LI. Identity authentication scheme based on identity-based encryption [J]. Chinese Journal of Network and Information Security, 2016, 2(6): 32-37.
[13]	Liang-min WANG,Ting-ting LI,Long CHEN. Security issues and system structure of internet of vehicles [J]. Chinese Journal of Network and Information Security, 2016, 2(2): 41-54.
[14]	Jing-jing GUO,Jian-feng MA,Xin-xin GUO,Tao ZHANG. Study of cross-domain identity authentication in SOA environment [J]. Chinese Journal of Network and Information Security, 2016, 2(11): 21-29.