基于谱系聚类法的用户击键特征识别

以用户击键特征为依据，提出了一种基于谱系聚类法的识别算法。该算法通过谱系聚类法对用户击键特征向量进行聚类分析，并形成各向量之间的谱系关系，从而由谱系关系来对击键特征向量进行识别。该算法的主要特点是使用欧氏距离进行分类，算法实现简单并且识别速度快。由于采用的聚类算法的简单性，其识别精度尚有待提高，因此该算法适用于击键识别的简单应用。     

基于遗传算法和灰色关联分析的击键特征识别算法

基于用户击键特征的身份认证比传统的基于口令的身份认证方法有更高的安全性，现有研究方法中基于神经网络、数据挖掘等算法计算复杂度高，而基于特征向量、贝叶斯统计模型等算法识别精度较低。为了在提高识别精度的同时有效降低计算复杂度，在研究现有算法的基础上提出了一种基于遗传算法与灰色关联分析的击键特征识别算法。该算法利用遗传算法根据用户训练样本确定表征用户击键特征的标准特征序列，通过对当前用户击键特征序列与标准特征序列进行灰色关联分析实现用户身份认证。实验结果表明，该算法识别精度达到神经网络、支持向量机等算法的较高水平，错误拒绝率与错误接受率分别为0%与1.5%。且计算复杂度低，与基于特征向量的算法相近。     

基于击键压力和时间匹配的异常检测方法

为了有效利用用户的生物特征进行入侵者身份识别,提出了一种基于用户击键特征进行异常检测的新方法.该方法根据人们在击键时所产生的按键压力和时间间隔的惟一性,利用正态分布的特性控制模式库生成方式,构造出能够描述每个用户独有特征的击键特征向量库,然后利用模式匹配算法对新登陆用户进行检测.相关实验验证了该方法具有较高的用户识别能力.     

基于击键特征的用户身份认证新方法

口令保护机制是绝大多数计算机及网络安全管理中的重要一环，如何有效防止因口令失窃而造成计算机及网络系统的非法进入，一直是一个倍受关注的问题，为此文章提出了一种利用用户口令输入击键特征进行用户身份认证的新方法，该方法利用人在点击键盘时所产生的按键压力和击键频率，构造出能够描述每个用户独有特征的击键特征向量，并由此提出了一种基于有限正例样本集合识别正反例的新算法，相关实验结果表明该身份认证新方法具有较高的用户识别能力。     

采用击键特征曲线差异度的用户身份认证方法

击键特征是一种能反映用户行为的动态特征,可作为用户身份识别的信息源。传统的认证方法通常仅采用击键特征向量中所包含的每个特征值的大小来进行身份识别,而没有利用任意两个相邻特征值之间的变化率,在一些情况下,可能导致识别准确度不理想。针对上述问题,定义了一种新颖的击键特征曲线差异度的概念,并由此提出基于击键特征曲线差异度的认证算法。该认证算法不仅利用了常规的击键特征信息,还首次引入了任意两个相邻特征值之间的变化率信息,使算法性能得到显著提高。实验结果表明,相比于曼哈顿距离算法、统计学算法、神经网络算法和机器学习算法,新算法的错误拒绝率、错误接受率和相等错误率更低,识别准确度更高,效果更好。     

基于流形学习的用户身份认证

本文基于等距映射（ISOMAP）非线性降维算法, 提出了一种新的基于用户击键特征的用户身份认证算法, 该算法用测地距离代替传统的欧氏距离, 作为样本向量之间的距离度量,在用户击键特征向量空间中挖掘嵌入的低维黎曼流形,进行用户识别。用采集到的1500个击键模式数据进行实验测试,结果表明,该文的算法性能优于现有的同类算法,其错误拒绝率（FRR）和错误通过率（FAR）分别是1.65%和0%,低于现有的同类算法。     

基于生物击键特性的访问控制

访问控制在安全领域起着越来越重要的作用,个人的一些生物特征具有唯一性而且难以改变,利用这些特征识别用户身份,从而进行系统访问控制具有很强的优势。论文首先通过对人体生物击键特性的分析,阐述了基于生物击键特性的访问控制过程;然后对已有的击键序列识别算法进行分析,提出了一种新的自适应击键特性识别算法。该算法能够适应用户敲击键盘熟练程度的变化,并可防止输入过程中的个别“奇点”影响整体的识别效果。算法改进的讨论中,通过改变特征数据的存储结构使得用户修改密码后,算法仍然能够从历史数据中挖掘击键特性,提高学习效率。最后的测试结果和理论分析都表明该方法对于因密钥丢失导致的系统失控具有很好的防护作用。     

基于三分类的击键序列身份认证

针对基于统计学用户击键模式识别算法识别率较低的不足，提出了一种统计学三分类主机用户身份认证算法。该方法通过对当前注册用户的击键特征与由训练样本得到的标准击键特征进行比较，将当前注册用户划分为合法用户类、怀疑类与入侵类三类,对怀疑类采用二次识别机制。 采用动态判别域值，引入了与系统安全性和友好性相关的可控参量k，由系统管理员根据实际确定。并对该算法性能进行了理论分析与实验测试，结果表明该算法在保持贝叶斯统计算法需要训练样本集规模较小、算法收敛速度快优点的基础上,识别精度高于贝叶斯统计算法，错误拒绝率(FRR)和错误通过率(FAR)分别为1.6%和1.5%。     

基于键盘行为数据的用户身份识别

用户击键行为作为一种生物特征,具有采集成本低、安全性高的特点。然而,现有的研究方法和实验环境都是基于实验室数据,并不适用于极度不平衡的真实数据。比如,在实验室数据上效果出色的分类算法在真实数据上却无法应用。针对此问题,提出了基于真实击键行为数据的用户识别算法。该方法将聚类算法和距离算法结合起来,通过比较新来的击键行为和历史击键行为相似度以实现用户识别。实验结果表明,该算法在100名用户的3015条真实击键记录组成的数据集上准确率达到88.22%,在投入实际应用后,随着样本集的增大算法的准确率还可以进一步提升。     

基于口令击键过程的用户身份识别方法研究

口令保护机制是计算机系统及其网络安全管理中重要的一环.如何有效防止因口令失窃所造成计算机及其网络系统的非法进入,一直是一个倍受关注的问题.为此本文提出了一种利用用户口令输入时的击键特征进行用户身份认证的方法.该方法利用用户在点击键盘时所产生的按键压力和击键频率,构造出能够描述每个用户特有的击键特征向量,并由此提出了一种基于有限正例样本集合识别正反例的归纳方法.相应的实验结果表明这种用户身份认证方法,具有较高的用户识别能力.     

User authentication via keystroke dynamics based on difference subspace and slope correlation degree

User authentication via keystroke dynamics remains a challenging problem due to the fact that keystroke dynamics pattern cannot be maintained stable over time. This paper describes a novel keystroke dynamics-based user authentication approach. The proposed approach consists of two stages, a training stage and an authentication stage. In the training stage, a set of orthogonal bases and a common feature vector are periodically generated from keystroke features of a legitimate user?s several recent successful authentications. In the authentication stage, the current keystroke feature vector is projected onto the set of orthogonal bases, and the distortion of the feature vector between its projection is obtained. User authentication is implemented by comparing the slope correlation degree of the distortion between the common feature vector with a threshold determined periodically using the recent impostor patterns. Theoretical and experimental results show that the proposed method presents high tolerance to instability of user keystroke patterns and yields better performance in terms of false acceptance rate (FAR) and false rejection rate (FRR) compared with some recent methods.     

A parameterized model to select discriminating features on keystroke dynamics authentication on smartphones

Nowadays, smartphones work not only as personal devices, but also as distributed IoT edge devices uploading information to a cloud. Their secure authentications become more crucial as information from them can spread wider. Keystroke dynamics is one of prominent candidates for authentications factors. Combined with PIN/pattern authentications, keystroke dynamics provide a user-friendly multi-factor authentication for smartphones and other IoT devices equipped with keypads and touch screens. There have been many studies and researches on keystroke dynamics authentication with various features and machine-learning classification methods. However, most of researches extract the same features for the entire user and the features used to learn and authenticate the user’s keystroke dynamics pattern. Since the same feature is used for all users, it may include features that express the users’ keystroke dynamics well and those that do not. The authentication performance may be deteriorated because only the discriminative feature capable of expressing the keystroke dynamics pattern of the user is not selected. In this paper, we propose a parameterized model that can select the most discriminating features for each user. The proposed technique can select feature types that better represent the user’s keystroke dynamics pattern using only the normal user’s collected samples. In addition, performance evaluation in previous studies focuses on average EER(equal error rate) for all users. EER is the value at the midpoint between the FAR(false acceptance rate) and FRR(false rejection rate), FAR is the measure of security, and FRR is the measure of usability. The lower the FAR, the higher the authentication strength of keystroke dynamics. Therefore, the performance evaluation is based on the FAR. Experimental results show that the FRR of the proposed scheme is improved by at least 10.791% from the maximum of 31.221% compared with the other schemes.     

On the discriminability of keystroke feature vectors used in fixed text keystroke authentication

Heterogeneous and aggregate vectors are the two widely used feature vectors in fixed text keystroke authentication. In this paper, we address the question “Which vectors, heterogeneous, aggregate, or a combination of both, are more discriminative and why?” We accomplish this in three ways - (1) by providing an intuitive example to illustrate how aggregation of features inherently reduces discriminability; (2) by formulating “discriminability” as a non-parametric estimate of Bhattacharya distance, we show theoretically that the discriminability of a heterogeneous vector is higher than an aggregate vector; and (3) by conducting user recognition experiments using a dataset containing keystrokes from 33 users typing a 32-character reference text, we empirically validate our theoretical analysis. To compare the discriminability of heterogeneous and aggregate vectors with different combinations of keystroke features, we conduct feature selection analysis using three methods: (1) ReliefF, (2) correlation based feature selection, and (3) consistency based feature selection. Results of feature selection analysis reinforce the findings of our theoretical analysis.     

板带材缺陷检测中的多特征优化组合方法研究

针对冷轧板带材常见表面缺陷图像识别的特点,提出了板带材表面缺陷多特征优化组合方法,该方法以直方图统计特征、小波变换特征、灰度共生矩阵特征、不变矩特征等4类特征共26维特征向量为基础,依据类间类内距离差的类别可分离性判据对特征进行优化,选出最优特征向量组合。对6类典型板带材表面缺陷进行实验,实验结果表明,采用多特征优化组合方法选择出的特征向量具有较好的分离效果,显著地提高了表面缺陷的识别率。     

典型相关分析的理论及其在特征融合中的应用

利用典型相关分析的思想，提出了一种基于特征级融合的组合特征抽取新方法．首先，探讨了将典型分析用于模式识别的理论构架，给出了其合理的描述．即先抽取同一模式的两组特征矢量，建立描述两组特征矢量之间相关性的判据准则函数，然后依此准则求取两组典型投影矢量集，通过给定的特征融合策略抽取组合的典型相关特征并用于分类．其次，解决了当两组特征矢量构成的总体协方差矩阵奇异时，典型投影矢量集的求解问题，使之适合于高维小样本的情形，推广了典型相关分析的适用范围．最后，从理论上进一步剖析了该方法之所以能有效地用于识别的内在本质．该方法巧妙地将两组特征矢量之间的相关性特征作为有效判别信息，既达到了信息融合之目的，又消除了特征之间的信息冗余，为两组特征融合用于分类识别提出了新的思路．在肯考迪亚大学CENPARMI手写体阿拉伯数字数据库和FERET人脸图像数据库上的实验结果证实了该方法的有效性和稳定性，而且识别结果优于已有的特征融合方法及基于单一特征进行识别的方法．     

Continuous Authentications Using Frequent English Terms

Most of the current computer systems authenticate a user’s identity only at the point of entry to the system (i.e., login). However, an effective authentication system includes continuous or frequent monitoring of the identity of a user already logged into a system to ensure the validity of the identity of the user throughout a session. Such a system is called a “continuous or active authentication system.” An authentication system equipped with such a security mechanism protects the system against certain attacks including session hijacking that can be performed later by a malicious user. The aim of this research is to advance the state-of-the-art of the user-active authentication research using keystroke dynamics. Through this research, we assess the performance and influence of various keystroke features on keystroke dynamics authentication systems. In particular, we investigate the performance of keystroke features on a subset of most frequently used English words. The performance of four features including key duration, flight time latency, diagraph time latency, and word total time duration are analyzed. A series of experiments is performed to measure the performance of each feature individually as well as the results from the combinations of these features. More specifically, four machine learning techniques are adapted for the purpose of assessing keystroke authentication schemes. The selected classification methods are Support Vector Machine (SVM), Linear Discriminate Classifier (LDC), K-Nearest Neighbors (K-NN), and Naive Bayesian (NB). Moreover, this research proposes a novel approach based on sequential change-point methods for early detection of an imposter in computer authentication without the needs for any modeling of users in advance, that is, no need for a-priori information regarding changes. The proposed approach based on sequential change-point methods provides the ability to detect the impostor in early stages of attacks. The study is performed and evaluated based on data collected for 28 users. The experimental results indicate that the word total time feature offers the best performance result among all four keystroke features, followed by diagraph time latency. Furthermore, the results of the experiments also show that the combination of features enhances the performance accuracy. In addition, the nearest neighbor method performs the best among the four machine learning techniques.     

基于典型相关分析的组合特征抽取及脸像鉴别

利用典型相关分析的思想，提出了一种基于特征级融合的组合特征抽取新方法．首先，抽取同一模式的两组特征矢量，给出描述两组特征矢量之间相关性的判据准则函数；然后依此准则抽取它们的典型相关特征，构成有效鉴别特征矢量用于识别．该方法巧妙地将两组特征矢量之间的相关性特征作为有效判别信息，既达到了信息融合之目的，又消除了特征之间的信息冗余，为两组特征融合用于分类识别提供了新的思路．此外，从理论上进一步剖析了所提出的方法之所以能有效地用于识别的内在本质．在Yale和ORL标准人脸数据库上的实验结果证实了所提算法的有效性和稳定性，而且识别率大大高于用单一特征进行识别的结果．