我们的网站为什么显示成这样?

可能因为您的浏览器不支持样式,您可以更新您的浏览器到最新版本,以获取对此功能的支持,访问下面的网站,获取关于浏览器的信息:

|本期目录/Table of Contents|

基于鼠标动力学模型的用户身份认证与监控(PDF)

《西安交通大学学报》自然版[ISSN:0253-987X/CN:61-1069/T]

期数:
2008年第10期
页码:
1235-1239
栏目:
出版日期:
2008-10-10

文章信息/Info

Title:
Authentication and Monitoring of User Identities Based on Mouse Dynamics
文章编号:
0253-987X(2008)10-1235-05
作者:
房超12蔡忠闽12沈超12牛非12管晓宏12
1.西安交通大学制造系统国家重点实验室,710049, 西安; 2.西安交通大学智能网络与网络安全教育部重点实验室, 710049, 西安
Author(s):
FANG Chao12CAI Zhongmin12SHEN Chao12NIU Fei12GUAN Xiaohong12
1.State Key Laboratory for Manufacturing Systems,Xi′an Jiaotong University,Xi′an  710049,China; 2.MOE Key Laboratoryfor Intelligent Networks and Network Security, Xi′an Jiaotong University,Xi′an  710049, China
关键词:
鼠标动力学身份认证身份监控计算机系统安全人机交互
Keywords:
mouse dynamics identity authentication identity monitoring computer system security human computer interaction
分类号:
TP393
DOI:
0253-987X(2008)10-1235-05
文献标识码:
A
摘要:
针对计算机系统安全中的用户身份识别和监控等基本问题,提出了一种利用鼠标动力学行为特征进行身份识别的新方法.通过采集各种应用环境下的鼠标行为数据,从交互和生理2个层面上对人机交互过程中计算机用户的鼠标行为特征进行建模、分析,以达到实时监测用户身份、检测非法用户的目的.所提方法可为身份监控原型系统实时采集用户的行为数据,并将当前的行为与用户的历史行为模型进行比较,以判断和检测用户身份,再依据判断检测结果产生实时的响应,从而有效防止非法用户侵入.实验采集并分析了10个用户的鼠标行为数据,通过特征降维与神经网络分类相结合的算法,得到了0.48%的误识率和2.86%的拒识率,充分展示了基于鼠标动力学行为模型进行身份认证和监控的可行性.
Abstract:
User identification and monitoring is one of the most important issues in computer system security. A new method for user identification is presented based on the dynamics of computer mouse behavior. Data of mouse behavior in various applications are collected, and users’ mouse behavior in human computer interaction is analyzed and modeled, specifically from both the interaction layer and the physiological layer. Based on the dynamic model, a realtime identity authentication and monitoring prototype system is developed, which can intercept users’ mouse behavior data, and compare user’s current behavior with his history behavior model in order to detect and authenticate current user’s identity. According to the result of authentication, system responds realtime and defends against the intrusion of illegal user. An algorithm that uses feature dimension reduction and neural network for classification is applied in experiments for ten users. The experimental results show that mouse dynamics is effective for authenticating and monitoring user identities with a false accept rate (FAR) of 0.48% and a false rejection rate (FRR) of 2.86%.

参考文献/References

[1]O’GORMAN L. Comparing passwords, tokens, and biometrics for user authentication [J]. Proceedings of the IEEE, 2003, 91(12):20212040.
[2]BLEHA S, SLIVINSKY C, HUSSIEN B. Computeraccess security systems using keystroke dynamics [J]. IEEE Transactions on Pattern Analysis and Machine Intelligence, 1990, 12(12):12171222.
[3]OBAIDAT M S, SADOUN B. Verification of computer users using keystroke dynamics [J]. IEEE Transactions on System, Man, Cybernetics, 1997, 27(2):261269.
[4]高艳, 管晓宏, 孙国基, 等. 基于实时击键序列的主机入侵检测 [J]. 计算机学报, 2004, 27(3):336400. GAO Yan, GUAN Xiaohong, SUN Guoji, et al. The hostbased intrusion detection based on real time keystroke sequences [J]. Chinese Journal of Computers, 2004, 27(3):336400.
[5]PUSARA M, BRODLEY C E. User reauthentication via mouse movements [C]∥Proceedings of the 2004 ACM Workshop on Visualization and Data Mining for Computer Security. New York, USA: ACM,2004:18.
[6]GAMBOA H, FRED A. A behavioral biometric system based on human computer interaction [EB/OL]. [20061011].http:∥www.lx.it.pt/~afred/anawebit/articles/AFredSPIE2004.pdf.
[7]AHMED A A E, TRAORE I. Anomaly intrusion detection based on biometrics [C]∥Proceedings of IEEE Information Assurance Workshop. Piscataway, NJ, USA: IEEE, 2005:452453.
[8]AHMED A A E, TRAORE I. Detecting computer intrusions using behavioral biometrics [EB/OL]. [20060819].http:∥www.lib.unb.ca/Texts/PST/2005/pdf/ahmed.pdf.
[9]GARG    A,    SANKARANARAYANAN    V,    UPADHYAYA S, et al. USim: a user behavior simulation framework for training and testing IDSes in GUI based systems [C]∥Proceedings of 39th Annual Simulation Symposium. Los Alamitos, CA, USA: IEEE Computer Society, 2006:196203.
[10]桑应朋. 基于计算机击键动力学的用户身份鉴别 [D]. 成都:西南交通大学信息科学与技术学院, 2004.
[11]FITTS P M. The information capacity of the human motor system in controlling the amplitude of movement[J]. Journal of Experimental Psychology, 1954,47(6):381391.
[12]MITHAL A K, DOUGLAS S A. Differences in movement microstructure of the mouse and the fingercontrolled isometric joystick [C]∥Proceedings of the SIGCHI Conference on Human Factors in Computing Systems: Common Ground. New York, USA: ACM, 1996:300307.
[13]PLAMONDON R, FENG C, WOCH A. A kinematic theory of rapid human movement [J]. Biological Cybernetics, 2003, 89(2):126138.

备注/Memo

备注/Memo:
-
更新日期/Last Update: