Keystroke Dynamics Algorithm for Securing Web-based Password Driven Systems
Michael Boakye Osei *
School of Computer Science and Engineering, Nanjing University of Science and Technology, 210094, China.
Enoch Opanin Gyamfi
School of Software Engineering, University of Electronic Science and Technology of China, Chengdu, China.
Mohammed Okoe Alhassan
School of Mechanical Engineering, Nanjing University of Science and Technology, 210094, China.
*Author to whom correspondence should be addressed.
Abstract
Web security is a critical aspect for many web-based applications, along its research track, keystroke dynamics techniques have attracted broad interests due to their high efficiency in security. In this paper, the aim was to come out with a keystroke login system that overcomes the typical challenges associated with keystroke dynamics and improves on password security but with focus on irritability nature of keystroke dynamics based systems. Specifically, we proposed two stages user matching method, training/enrolment phase of users and authenticating registered users with previously stored data. Furthermore, the proposed algorithm added dwell, flight times and multiplied by the locate time to get the upper and lower bounds. Moreover, the uniform differences between the bound timings were calculated to further enhance security. Experimental results show that the proposed keystroke dynamics approach used in augmenting password security emerged to be superior as compared to existing customary distance metrics.
Keywords: Keystroke dynamics, web security, user credentials, flight time.