A Gaze Gesture-Based User Authentication System to Counter Shoulder-Surfing Attacks Conference Paper uri icon


  • Copyright © 2017 by the Association for Computing Machinery, Inc. (ACM). Shoulder-surfing is the act of spying on an authorized user of a computer system with the malicious intent of gaining unauthorized access. Current solutions to address shoulder-surfing such as graphical passwords, gaze input, tactile interfaces, and so on are limited by low accuracy, lack of precise gaze-input, and susceptibility to video analysis attack. We present an intelligent gaze gesture-based system that authenticates users from their unique gaze patterns onto moving geometric shapes. The system authenticates the user by comparing their scan-path with each shapes' paths and recognizing the closest path. In a study with 15 users, authentication accuracy was found to be 99% with true calibration and 96% with disturbed calibration. Also, our system is 40% less susceptible and nearly nine times more time-consuming to video analysis attacks compared to a gaze- and PIN-based authentication system.

name of conference

  • CHI '17: CHI Conference on Human Factors in Computing Systems

published proceedings

  • Proceedings of the 2017 CHI Conference Extended Abstracts on Human Factors in Computing Systems

author list (cited authors)

  • Rajanna, V., Polsley, S., Taele, P., & Hammond, T.

citation count

  • 23

complete list of authors

  • Rajanna, Vijay||Polsley, Seth||Taele, Paul||Hammond, Tracy

editor list (cited editors)

  • Mark, G., Fussell, S. R., Lampe, C., schraefel, M. C., Hourcade, J. P., Appert, C., & Wigdor, D.

publication date

  • May 2017


  • ACM  Publisher