TouchPass: Towards behavior-irrelevant on-touch user authentication on smartphones leveraging vibrations

Xiangyu Xu; Jiadi Yu; Yingying Chen; Qin Hua; Yanmin Zhu; Yi Chao Chen; Minglu Li

doi:10.1145/3372224.3380901

TouchPass: Towards behavior-irrelevant on-touch user authentication on smartphones leveraging vibrations

Xiangyu Xu, Jiadi Yu, Yingying Chen, Qin Hua, Yanmin Zhu, Yi Chao Chen, Minglu Li

School of Engineering, Electrical & Computer Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

26 Scopus citations

Abstract

With increasing private and sensitive data stored in mobile devices, secure and effective mobile-based user authentication schemes are desired. As the most natural way to contact with mobile devices, finger touches have shown potentials for user authentication. Most existing approaches utilize finger touches as behavioral biometrics for identifying individuals, which are vulnerable to spoofer attacks. To resist attacks for on-touch user authentication on mobile devices, this paper exploits physical characters of touching fingers by investigating active vibration signal transmission through fingers, and we find that physical characters of touching fingers present unique patterns on active vibration signals for different individuals. Based on the observation, we propose a behavior-irrelevant on-touch user authentication system, TouchPass, which leverages active vibration signals on smartphones to extract only physical characters of touching fingers for user identification. TouchPass first extracts features that mix physical characters of touching fingers and behavior biometrics of touching behaviors from vibration signals generated and received by smartphones. Then, we design a Siamese network-based architecture with a specific training sample selection strategy to reconstruct the extracted signal features to behavior-irrelevant features and further build a behavior-irrelevant on-touch user authentication scheme leveraging knowledge distillation. Our extensive experiments validate that TouchPass can accurately authenticate users and defend various attacks.

Original language	English (US)
Title of host publication	Proceedings of the 26th Annual International Conference on Mobile Computing and Networking, MobiCom 2020
Publisher	Association for Computing Machinery
Pages	309-321
Number of pages	13
ISBN (Electronic)	9781450370851
DOIs	https://doi.org/10.1145/3372224.3380901
State	Published - Apr 16 2020
Event	26th Annual International Conference on Mobile Computing and Networking, MobiCom 2020 - London, United Kingdom Duration: Sep 21 2020 → Sep 25 2020

Publication series

Name	Proceedings of the Annual International Conference on Mobile Computing and Networking, MOBICOM

Conference

Conference	26th Annual International Conference on Mobile Computing and Networking, MobiCom 2020
Country/Territory	United Kingdom
City	London
Period	9/21/20 → 9/25/20

All Science Journal Classification (ASJC) codes

Computer Networks and Communications
Hardware and Architecture
Software

Keywords

behavior-irrelevant
user authentication
vibration signals

Access to Document

10.1145/3372224.3380901

Cite this

Xu, X., Yu, J., Chen, Y., Hua, Q., Zhu, Y., Chen, Y. C., & Li, M. (2020). TouchPass: Towards behavior-irrelevant on-touch user authentication on smartphones leveraging vibrations. In Proceedings of the 26th Annual International Conference on Mobile Computing and Networking, MobiCom 2020 (pp. 309-321). (Proceedings of the Annual International Conference on Mobile Computing and Networking, MOBICOM). Association for Computing Machinery. https://doi.org/10.1145/3372224.3380901

Xu, Xiangyu ; Yu, Jiadi ; Chen, Yingying et al. / TouchPass : Towards behavior-irrelevant on-touch user authentication on smartphones leveraging vibrations. Proceedings of the 26th Annual International Conference on Mobile Computing and Networking, MobiCom 2020. Association for Computing Machinery, 2020. pp. 309-321 (Proceedings of the Annual International Conference on Mobile Computing and Networking, MOBICOM).

@inproceedings{59c8fb2073ca4469b4fe457008a931bb,

title = "TouchPass: Towards behavior-irrelevant on-touch user authentication on smartphones leveraging vibrations",

abstract = "With increasing private and sensitive data stored in mobile devices, secure and effective mobile-based user authentication schemes are desired. As the most natural way to contact with mobile devices, finger touches have shown potentials for user authentication. Most existing approaches utilize finger touches as behavioral biometrics for identifying individuals, which are vulnerable to spoofer attacks. To resist attacks for on-touch user authentication on mobile devices, this paper exploits physical characters of touching fingers by investigating active vibration signal transmission through fingers, and we find that physical characters of touching fingers present unique patterns on active vibration signals for different individuals. Based on the observation, we propose a behavior-irrelevant on-touch user authentication system, TouchPass, which leverages active vibration signals on smartphones to extract only physical characters of touching fingers for user identification. TouchPass first extracts features that mix physical characters of touching fingers and behavior biometrics of touching behaviors from vibration signals generated and received by smartphones. Then, we design a Siamese network-based architecture with a specific training sample selection strategy to reconstruct the extracted signal features to behavior-irrelevant features and further build a behavior-irrelevant on-touch user authentication scheme leveraging knowledge distillation. Our extensive experiments validate that TouchPass can accurately authenticate users and defend various attacks.",

keywords = "behavior-irrelevant, user authentication, vibration signals",

author = "Xiangyu Xu and Jiadi Yu and Yingying Chen and Qin Hua and Yanmin Zhu and Chen, {Yi Chao} and Minglu Li",

note = "Funding Information: This research was sponsored by NSFC (No.61772338). Publisher Copyright: {\textcopyright} 2020 ACM.; 26th Annual International Conference on Mobile Computing and Networking, MobiCom 2020 ; Conference date: 21-09-2020 Through 25-09-2020",

year = "2020",

month = apr,

day = "16",

doi = "10.1145/3372224.3380901",

language = "English (US)",

series = "Proceedings of the Annual International Conference on Mobile Computing and Networking, MOBICOM",

publisher = "Association for Computing Machinery",

pages = "309--321",

booktitle = "Proceedings of the 26th Annual International Conference on Mobile Computing and Networking, MobiCom 2020",

}

Xu, X, Yu, J, Chen, Y, Hua, Q, Zhu, Y, Chen, YC & Li, M 2020, TouchPass: Towards behavior-irrelevant on-touch user authentication on smartphones leveraging vibrations. in Proceedings of the 26th Annual International Conference on Mobile Computing and Networking, MobiCom 2020. Proceedings of the Annual International Conference on Mobile Computing and Networking, MOBICOM, Association for Computing Machinery, pp. 309-321, 26th Annual International Conference on Mobile Computing and Networking, MobiCom 2020, London, United Kingdom, 9/21/20. https://doi.org/10.1145/3372224.3380901

TouchPass: Towards behavior-irrelevant on-touch user authentication on smartphones leveraging vibrations. / Xu, Xiangyu; Yu, Jiadi; Chen, Yingying et al.
Proceedings of the 26th Annual International Conference on Mobile Computing and Networking, MobiCom 2020. Association for Computing Machinery, 2020. p. 309-321 (Proceedings of the Annual International Conference on Mobile Computing and Networking, MOBICOM).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - TouchPass

T2 - 26th Annual International Conference on Mobile Computing and Networking, MobiCom 2020

AU - Xu, Xiangyu

AU - Yu, Jiadi

AU - Chen, Yingying

AU - Hua, Qin

AU - Zhu, Yanmin

AU - Chen, Yi Chao

AU - Li, Minglu

PY - 2020/4/16

Y1 - 2020/4/16

N2 - With increasing private and sensitive data stored in mobile devices, secure and effective mobile-based user authentication schemes are desired. As the most natural way to contact with mobile devices, finger touches have shown potentials for user authentication. Most existing approaches utilize finger touches as behavioral biometrics for identifying individuals, which are vulnerable to spoofer attacks. To resist attacks for on-touch user authentication on mobile devices, this paper exploits physical characters of touching fingers by investigating active vibration signal transmission through fingers, and we find that physical characters of touching fingers present unique patterns on active vibration signals for different individuals. Based on the observation, we propose a behavior-irrelevant on-touch user authentication system, TouchPass, which leverages active vibration signals on smartphones to extract only physical characters of touching fingers for user identification. TouchPass first extracts features that mix physical characters of touching fingers and behavior biometrics of touching behaviors from vibration signals generated and received by smartphones. Then, we design a Siamese network-based architecture with a specific training sample selection strategy to reconstruct the extracted signal features to behavior-irrelevant features and further build a behavior-irrelevant on-touch user authentication scheme leveraging knowledge distillation. Our extensive experiments validate that TouchPass can accurately authenticate users and defend various attacks.

AB - With increasing private and sensitive data stored in mobile devices, secure and effective mobile-based user authentication schemes are desired. As the most natural way to contact with mobile devices, finger touches have shown potentials for user authentication. Most existing approaches utilize finger touches as behavioral biometrics for identifying individuals, which are vulnerable to spoofer attacks. To resist attacks for on-touch user authentication on mobile devices, this paper exploits physical characters of touching fingers by investigating active vibration signal transmission through fingers, and we find that physical characters of touching fingers present unique patterns on active vibration signals for different individuals. Based on the observation, we propose a behavior-irrelevant on-touch user authentication system, TouchPass, which leverages active vibration signals on smartphones to extract only physical characters of touching fingers for user identification. TouchPass first extracts features that mix physical characters of touching fingers and behavior biometrics of touching behaviors from vibration signals generated and received by smartphones. Then, we design a Siamese network-based architecture with a specific training sample selection strategy to reconstruct the extracted signal features to behavior-irrelevant features and further build a behavior-irrelevant on-touch user authentication scheme leveraging knowledge distillation. Our extensive experiments validate that TouchPass can accurately authenticate users and defend various attacks.

KW - behavior-irrelevant

KW - user authentication

KW - vibration signals

UR - http://www.scopus.com/inward/record.url?scp=85086137921&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85086137921&partnerID=8YFLogxK

U2 - 10.1145/3372224.3380901

DO - 10.1145/3372224.3380901

M3 - Conference contribution

AN - SCOPUS:85086137921

T3 - Proceedings of the Annual International Conference on Mobile Computing and Networking, MOBICOM

SP - 309

EP - 321

BT - Proceedings of the 26th Annual International Conference on Mobile Computing and Networking, MobiCom 2020

PB - Association for Computing Machinery

Y2 - 21 September 2020 through 25 September 2020

ER -

Xu X, Yu J, Chen Y, Hua Q, Zhu Y, Chen YC et al. TouchPass: Towards behavior-irrelevant on-touch user authentication on smartphones leveraging vibrations. In Proceedings of the 26th Annual International Conference on Mobile Computing and Networking, MobiCom 2020. Association for Computing Machinery. 2020. p. 309-321. (Proceedings of the Annual International Conference on Mobile Computing and Networking, MOBICOM). doi: 10.1145/3372224.3380901

TouchPass: Towards behavior-irrelevant on-touch user authentication on smartphones leveraging vibrations

Abstract

Publication series

Conference

All Science Journal Classification (ASJC) codes

Keywords

Access to Document

Other files and links

Fingerprint

Cite this