DyGazePass: A Gaze Gesture-Based Dynamic Authentication System to Counter Shoulder Surfing and Video Analysis Attacks Conference Paper

abstract

• 2018 IEEE. Shoulder surfing enables an attacker to gain the authentication details of a victim through observations and is becoming a threat to visual privacy. We present DyGazePass: Dynamic Gaze Passwords, an authentication strategy that uses dynamic gaze gestures. We also present two authentication interfaces, a dynamic and a static-dynamic interface, that leverage this strategy to counter shoulder surfing attacks. The core idea is, a user authenticates by following uniquely colored circles that move along random paths on the screen. Through multiple evaluations, we discuss how the authentication accuracy varies with respect to transition speed of the circles, and the number of moving and static circles. Furthermore, we evaluate the resiliency of our authentication method against video analysis attacks by comparing it to a gaze- and PIN-based authentication system. Overall, we found that the static-dynamic interface with a transition speed of two seconds was the most effective authentication method with an accuracy of 97.5%.

name of conference

• 2018 IEEE 4th International Conference on Identity, Security, and Behavior Analysis (ISBA)

authors

• Hammond, Tracy

published proceedings

• 2018 IEEE 4TH INTERNATIONAL CONFERENCE ON IDENTITY, SECURITY, AND BEHAVIOR ANALYSIS (ISBA)

author list (cited authors)

• Rajanna, V., Malla, A. H., Bhagat, R. A., & Hammond, T.

citation count

• 9

complete list of authors

• Rajanna, Vijay||Malla, Adil Hamid||Bhagat, Rahul Ashok||Hammond, Tracy

publication date

• January 2018

publisher

• Institute of Electrical and Electronics Engineers (IEEE)  Publisher

Digital Object Identifier (DOI)

• 10.1109/isba.2018.8311458

International Standard Book Number (ISBN) 13

• 9781538622483

start page

• 1

end page

• 8

volume

• 2018-January

URL

• http://dx.doi.org/10.1109/isba.2018.8311458