{"title":"SGFA","authors":"Lukáš Janík, D. Chudá, Kamil Burda","doi":"10.1145/3407982.3408021","DOIUrl":null,"url":null,"abstract":"In this paper we propose a user authentication method on smartphone devices based on the popular pattern lock mechanism, called the Simple Game For Authentication (SGFA). The SGFA mechanism resembles a simple game involving connecting points on the touch screen that is relatively easy to perform. To provide increased security, the mechanism utilizes both the user's knowledge and behavioral biometrics based on touch screen interaction an active layer of defence against unauthorized access. Based on an initial experiment, we determine the minimum number of strokes forming a password to reach a satisfying level of success rate. We discuss possible problems and attacks that can potentially break the process and evaluate the impact of over-the-shoulder attacks on the security of the password-matching layer. We further evaluate the biometric layer in terms of user authentication error rates. In an experiment involving 33 participants, the biometric layer achieved the false acceptance rate (FAR) and false rejection rate (FRR) of approx. 1.4% and 2%, respectively. Combined with the password-matching layer, the SGFA mechanism provides a more secure approach than pattern locks.","PeriodicalId":309371,"journal":{"name":"Proceedings of the 21st International Conference on Computer Systems and Technologies '20","volume":"8 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-06-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 21st International Conference on Computer Systems and Technologies '20","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3407982.3408021","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 3
Abstract
In this paper we propose a user authentication method on smartphone devices based on the popular pattern lock mechanism, called the Simple Game For Authentication (SGFA). The SGFA mechanism resembles a simple game involving connecting points on the touch screen that is relatively easy to perform. To provide increased security, the mechanism utilizes both the user's knowledge and behavioral biometrics based on touch screen interaction an active layer of defence against unauthorized access. Based on an initial experiment, we determine the minimum number of strokes forming a password to reach a satisfying level of success rate. We discuss possible problems and attacks that can potentially break the process and evaluate the impact of over-the-shoulder attacks on the security of the password-matching layer. We further evaluate the biometric layer in terms of user authentication error rates. In an experiment involving 33 participants, the biometric layer achieved the false acceptance rate (FAR) and false rejection rate (FRR) of approx. 1.4% and 2%, respectively. Combined with the password-matching layer, the SGFA mechanism provides a more secure approach than pattern locks.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
