Identity Theft, Computers and Behavioral Biometrics

Abstract

The increase of online services, such as eBanks, WebMails, in which users are verified by a username and password, is increasingly exploited by Identity Theft procedures. Identity Theft is a fraud, in which someone pretends to be someone else in order to steal money or get other benefits. To overcome the problem of Identity Theft an additional security layer is required. Within the last decades the option of verifying users based on their keystroke dynamics was proposed during login verification. Thus, the imposter has to be able to type in a similar way to the real user in addition to having the username and password. However, verifying users upon login is not enough, since a logged station/mobile is vulnerable for imposters when the user leaves her machine. Thus, verifying users continuously based on their activities is required. Within the last decade there is a growing interest and use of biometrics tools, however, these are often costly and require additional hardware. Behavioral biometrics, in which users are verified, based on their keyboard and mouse activities, present potentially a good solution. In this paper we discuss the problem of Identity Theft and propose behavioral biometrics as a solution. We survey existing studies and list the challenges and propose solutions.

@INPROCEEDINGS{5137288,
  author = {Moskovitch, Robert and Feher, Clint and Messerman, Arik and Kirschnick,
	Niklas and Mustafi'{c}, Tarik and Camtepe, Ahmet and Löhlein, Bernhard
	and Heister, Ulrich and Möller, Sebastian and Rokach, Lior and Elovici,
	Yuval},
  title = {Identity Theft, Computers and Behavioral Biometrics},
  booktitle = {Intelligence and Security Informatics, 2009. IEEE ISI '09.},
  year = {2009},
  pages = {155--160},
  address = {Dallas, TX, USA},
  month = {June},
  abstract = {The increase of online services, such as eBanks, WebMails, in which
	users are verified by a username and password, is increasingly exploited
	by Identity Theft procedures. Identity Theft is a fraud, in which
	someone pretends to be someone else is order to steal money or get
	other benefits. To overcome the problem of Identity Theft an additional
	security layer is required. Within the last decades the option of
	verifying users based on their keystroke dynamics was proposed during
	login verification. Thus, the imposter has to be able to type in
	a similar way to the real user in addition to having the username
	and password. However, verifying users upon login is not enough,
	since a logged station/mobile is vulnerable for imposters when the
	user leaves her machine. Thus, verifying users continuously based
	on their activities is required. Within the last decade there is
	a growing interest and use of biometrics tools, however, these are
	often costly and require additional hardware. Behavioral biometrics,
	in which users are verified, based on their keyboard and mouse activities,
	present potentially a good solution. In this paper we discuss the
	problem of Identity Theft and propose behavioral biometrics as a
	solution. We survey existing studies and list the challenges and
	propose solutions.},
  doi = {http://dx.doi.org/10.1109/ISI.2009.5137288},
  isbn = {978-1-4244-4171-6},
  keywords = {AbV, Authentication, Behavioural Biometrics, Biometric, Kestroke Dynamics,
	Machine Learning, Mouse Dynamics, Security},
  owner = {arik},
  timestamp = {2009.06.29}
}
Authors:
Robert Moskovitch, Clint Feher, Arik Messerman, Niklas Kirschnick, Tarik Mustafic, Seyit Ahmet Camtepe, Bernhard Löhlein, Ulrich Heister, Sebastian Möller, Lior Rokach, Yuval Elovici
Category:
Conference Paper
Year:
2009
Location:
IEEE Intelligence and Security Informatics 2009 (ISI2009), Dallas, TX, USA