Secure, Usable and Privacy-Friendly User Authentication from Keystroke Dynamics

Kimmo Halunen, Visa Vallivaara

    Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

    4 Citations (Scopus)


    User authentication is a key technology in human machine interaction. The need to establish the legitimacy of transactions and possibly the actors behind them is crucial for trustworthy operation of services over the internet. A good authentication method offers security, usability and privacy protections for the users and the service providers. However, achieving all three properties with a single method is a difficult task and such methods are not in wide use today. We combine methods from biometrics, secure key exchange algorithms and privacy-protecting authentication to build an authentication system that achieves these three properties. Our system uses keystroke dynamics to authenticate the user and cryptographic methods to protect the privacy of the templates and samples and to extend the authentication to key exchange. The results show that the system can be used for user authentication, but more work is needed to protect against impersonation in some cases. Our work is extensible to many other biometrics that can be measured and compared in a similar manner as keystroke dynamics and with further research to larger classes of authentication methods.
    Original languageEnglish
    Title of host publicationSecure IT Systems
    Subtitle of host publication21st Nordic Conference, NordSec 2016, Oulu, Finland, November 2-4, 2016. Proceedings
    EditorsBilly Bob Brumley, Juha Röning
    ISBN (Electronic)978-3-319-47560-8
    ISBN (Print)978-3-319-47559-2
    Publication statusPublished - 9 Oct 2016
    MoE publication typeA4 Article in a conference publication
    Event21st Nordic Conference on Secure IT Systems - University of Oulu, Oulu, Finland
    Duration: 2 Nov 20164 Nov 2016

    Publication series

    SeriesLecture Notes in Computer Science


    Conference21st Nordic Conference on Secure IT Systems
    Abbreviated titleNordSec 2016


    • user authentication
    • keystroke dynamics
    • privacy
    • biometrics


    Dive into the research topics of 'Secure, Usable and Privacy-Friendly User Authentication from Keystroke Dynamics'. Together they form a unique fingerprint.

    Cite this