Direct and indirect human computer interaction based biometrics

Journal of Computers

Volumn 2, Issue 10, 2007, Pages 76-88

  Yampolskiy, Roman V ^a   Govindaraju, Venu ^a  

^a UNIVERSITY AT BUFFALO   (United States)

Author keywords

Behavioral biometrics; Human computer interaction; Intrusion detection

Indexed keywords

BEHAVIORAL RESEARCH; BIOMETRICS; INTRUSION DETECTION; MERCURY (METAL);

ACCURACY RATE; BEHAVIORAL BIOMETRICS; INTRUSION DETECTION SYSTEMS; PRIVACY ISSUE; STATE OF THE ART;

HUMAN COMPUTER INTERACTION;

EID: 67649656892     PISSN: 1796203X     EISSN: None     Source Type: Journal    
DOI: 10.4304/jcp.2.10.76-88     Document Type: Article

References (92)

1. A. K. Jain, A. Ross, and S. Prabhakar, "An introduction to biometric recognition, " IEEE Trans. Circuits Syst., Vol. 14., pp. 4-20, Video Technol, 2004.
2. R. V. Yampolskiy, "Motor-Skill Based Biometrics, " In Assuring Business processes, Proceedings of the 6th Annual Security Conference, Ed. G. Dhillon. Global Publishing, Las Vegas, NV, USA., April 11-12, 2007.
3. R. V. Yampolskiy, "Human Computer Interaction Based Intrusion Detection, " 4th International Conference on Information Technology: New Generations (ITNG 2007), Las Vegas, Nevada, USA, April 2-4, 2007.
4. J. Ilonen, "Keystroke dynamics, " Available at: www.it.lut.fi/kurssit/03-04/010970000/seminars /Ilonen.pdf, Retrieved July 12, 2006.
5. A. K. Jain, R. Bolle, and S. Pankanti, "BIOMETRICS: Personal Identification in Networked Society, " Kluwer Academic Publishers, 1999.
6. F. Monrose and A. D. Rubin, "Keystroke Dynamics as a Biometric for Authentication, " Future Generation Computing Systems (FGCS) Journal: Security on the Web (special issue), March 2000.
7. F. Bergadano, D. Gunetti, and C. Picardi, "User authentication through keystroke dynamics, " ACM Transactions on Information and System Security (TISSEC), November 2002.
8. D. Gunetti, C. Picardi, and G. Ruffo, "Keystroke Analysis of Different Languages: a Case Study, " Proc. of the Sixth Symposium on Intelligent Data Analysis (IDA 2005), Madrid, Spain, 2005.
9. M. Curtin, C. C. Tappert, M. Villani, G. Ngo, J. Simone, H. S. Fort, and S. Cha, "Keystroke Biometric Recognition on Long-Text Input: A Feasibility Study, " Proc. Int. Workshop Sci Comp/Comp Stat (IWSCCS 2006), Hong Kong, June 2006.
10. G. Bartolacci, M. Curtin, M. Katzenberg, N. Nwana, S.-H. Cha, and C. C. Tappert, " Long-Text Keystroke Biometric Applications over the Internet, " MLMTA, 2005.
11. M. Pusara and C. E. Brodley, "User re-authentication via mouse movements, " VizSEC/DMSEC '04: Proceedings of the 2004 ACM workshop on Visualization and data mining for computer security, Washington DC, USA, 2004.
12. A. A. E. Ahmed and I. Traore, "Detecting Computer Intrusions Using Behavioral Biometrics, " Third Annual Conference on Privacy, Security and Trust, St. Andrews, New Brunswick, Canada, October, 2005.
13. A. A. E. Ahmed and I. Traore, "Anomaly Intrusion Detection based on Biometrics, " Workshop on Information Assurance, United States Military Academy, West Point, NY, June 2005.
14. H. Gamboa and V.-. A. Fred., 2004., "A Behavioral Biometric System Based on Human Computer Interaction, " In Proceedings of SPIE, 2004.
15. H. Gamboa and A. Fred, "An identity authentication system based on human computer interaction behaviour, " Proc. of the 3rd Intl. Workshop on Pattern Recognition in Information Systems, 2003.
16. M. Orozco, Y. Asfaw, A. Adler, S. Shirmohammadi, and A. E. Saddik, "Automatic Identification of Participants in Haptic Systems, " 2005 IEEE Instrumentation and Measurement Technology Conference, Ottawa, Canada, 17-19 May 2005.
17. M. Orozco, Y. Asfaw, S. Shirmohammadi, A. Adler, and A. E. Saddik, "Haptic-Based Biometrics: A Feasibility Study, " IEEE Virtual Reality Conference, Alexandria, Virginia, USA, March 25-29, 2006.
18. M. O. Trujillo, I. Shakra, and A. E. Saddik, "Haptic: the new biometrics-embedded media to recognizing and quantifying human patterns, " MULTIMEDIA '05: Proceedings of the 13th annual ACM international conference on Multimedia, Hilton, Singapore, 2005.
19. Caslon-Analytics, Available at: http://www.caslon.com.au/biometricsnote6.htm, Retrieved October 2, 2005.
20. S. J. Stolfo, S. Hershkop, K. Wang, O. Nimeskern, and C.-W. Hu, "A Behavior-based Approach to Securing Email Systems, " Mathematical Methods, Models and Architectures for Computer Networks Security, Sept. 2003.
21. S. J. Stolfo, C.-W. Hu, W.-J. Li, S. Hershkop, K. Wang, and O. Nimeskern, "Combining Behavior Models to Secure Email Systems, " CU Tech Report, Available at: www1.cs.columbia.edu/ids/publications /EMT-weijen.pdf, April 2003.
22. E. H. Spafford and S. A. Weeber., "Software Forensics: Can We Track Code to its Authors?" 15th National Computer Security Conference, Oct 1992.
23. A. Gray, P. Sallis, and S. MacDonell, "Software Forensics: Extending Authorship Analysis Techniques to Computer Programs, " In Proc. 3rd Biannual Conf. Int. Assoc. of Forensic Linguists (IAFL'97), 1997.
24. G. Frantzeskou, S. Gritzalis, and S. MacDonell, "Source Code Authorship Analysis for Supporting the Cybercrime Investigation Process, " 1st International Conference on eBusiness and Telecommunication Networks-Security and Reliability in Information Systems and Networks Track, Setubal Portugal, August 2004.
25. R. V. Yampolskiy, "Behavior Based Identification of Network Intruders, " 19th Annual CSE Graduate Conference (Grad-Conf2006), Buffalo, NY, February 24, 2006.
26. R. V. Yampolskiy and V. Govindaraju, "Use of Behavioral Biometrics in Intrusion Detection and Online Gaming, " Biometric Technology for Human Identification III. SPIE Defense and Security Symposium, Orlando, Florida, 17-22 April 2006.
27. J. Ramon and N. Jacobs, "Opponent modeling by analysing play, " Proceedings of the Computers and Games workshop on Agents in Computer Games, Edmonton, Albera, Canada, 2002.
28. A. Brömme and S. Al-Zubi, "Multifactor Biometric Sketch Authentication, " In A. Brömme and C. Busch, editors, Proceedings of the BIOSIG 2003, Darmstadt, Germany, 24. July 2003.
29. S. Al-Zubi, A. Brömme, and K. Tönnies, "Using an Active Shape Structural Model for Biometric Sketch Recognition, " In Proceedings of DAGM, Magdeburg, Germany, 10.-12. September 2003.
30. D. Y. Yeung and Y. Ding, "Host-based intrusion detection using dynamic and static behavioral models, " Pattern Recognition, vol. 36, pp. 229-243.
31. J. Marin, D. Ragsdale, and J. Surdu, "A hybrid approach to the profile creation and intrusion detection, " DARPA Information Survivability Conference and Exposition (DISCEX II'01), 2001.
32. T. Lane and C. E. Brodley, "An Application of Machine Learning to Anomaly Detection, " 20th Annual National Information Systems Security Conference, 1997.
33. T. Lane and C. E. Brodley, "Detecting the Abnormal: Machine Learning in Computer Security, " Department of Electrical and Computer Engineering, Purdue University Technical Report ECE-97-1, West Lafayette, January 1997.
34. A. Garg, R. Rahalkar, S. Upadhyaya, and K. Kwiat, "Profiling Users in GUI Based Systems for Masquerade Detection, " The 7th IEEE Information Assurance Workshop (IAWorkshop 2006), West Point, New York, USA, June 21-23, 2006.
35. D. E. Denning, "An intrusion-detection model, " IEEE Transactions on Software Engineering, Vol. 13(2), pp. 222-232, 1987.
36. K. Ilgun, R. A. Kemmerer, and P. A. Porras, "State transition analysis: A rule-based intrusion detection approach, " Software Engineering, Vol. 21(3), pp. 188-199, 1995.
37. A. K. Ghosh, A. Schwartzbard, and M. Schatz, "Learning program behavior proles for intrusion detection, " In Proceedings of the First USENIX Workshop on Intrusion Detection and Network Monitoring, April 1999.
38. F. Apap, A. Honig, S. Hershkop, E. Eskin, and S. Stolfo, "Detecting malicious software by monitoring anomalous windows registry accesses, " Technical report, CUCS Technical Report, 2001.
39. A. G. Pennington, J. D. Strunk, J. L. Griffin, C. A. N. Soules, G. R. Goodson, and G. R. Ganger, "Storagebased intrusion detection: Watching storage activity for suspicious behavior, " Technical report CMU--CS--02--179. Carnegie Mellon University, October 2002.
40. H. H. Feng, O. M. Kolesnikov, P. Fogla, W. Lee, and W. Gong, "Anomaly detection using call stack information, " In Proceedings of IEEE Symposium on Security and Privacy, 2003.
41. G. Gupta, C. Mazumdar, and M. S. Rao, "Digital Forensic Analysis of E-mails: A trusted E-mail Protocol, " International Journal of Digital Evidance, vol. 2, 2004.
42. O. D. Vel, A. Anderson, M. Corney, and G. Mohay, "Mining Email Content for Author Identification Forensics, " SIGMOD: Special Section on Data Mining for Intrusion Detection and Threat Analysis, 2001.
43. A. R. Jansen, D. L. Dowe, and G. E., "Farr Inductive Inference of Chess Player Strategy, " Proceedings of the 6th Pacific Rim International Conference on Artificial Intelligence (PRICAI'2000), 2000.
44. C. Varenhorst, "Passdoodles; a Lightweight Authentication Method, " Available at: http://people.csail.mit.edu/emax/papers/varenhorst.pdf, July 27, 2004.
45. I. Jermyn, A. Mayer, F. Monrose, M. K. Reiter, and A. D. Rubin, "The Design and Analysis of Graphical Passwords, " Proceedings of the 8th USENIX Security Symposium, Washington, D.C., August 23-36, 1999.
46. K. Renaud, "Quantifying the Quality of Web Authentication Mechanisms. A Usability Perspective, " Journal of Web Engineering, Vol. 0, No. 0, Available at: http://www.dcs.gla.ac.uk/~karen/Papers/j.pdf, 2003.
47. M. Schonlau, W. DuMouchel, W.-H. Ju, A. F. Karr, M. Theus, and Y. Vardi, "Computer Intrusion: Detecting Maquerades, " Statistical Science, vol. 16, pp. 1-17, 2001.
48. R. A. Maxion and T. N. Townsend, "Masquerade detection using truncated command lines, " In International conference on dependable systems and networks(DNS-02), 2002.
49. V. Dao and V. Vemuri, "Profiling Users in the UNIX OS Environment, " International ICSC Conference on Intelligent Systems and Applications, University of Wollongong Australia, Dec. 11-15, 2000.
50. T. Goldring, "User Profiling for Intrusion Detection in Windows NT, " Computing Science and Statistics, vol. 35, 2003.
51. K. Kaufman, G. Cervone, and R. S. Michalski, "An Application of Symbolic Learning to Intrusion Detection: Preliminary Results From the LUS Methodology, " Reports of the Machine Learning and Inference Laboratory, MLI 03-2, George Mason University, Fairfax, VA, June, 2003.
52. R. V. Yampolskiy, "Indirect Human Computer Interaction-Based Biometrics for Intrusion Detection Systems, " The 41st Annual IEEE International Carnahan Conference on Security Technology (ICCST2007), Ottawa, Canada, October 9-11, 2007 (to appear).
53. T. Lunt, "Detecting Intruders in Computer Systems, " In Proceedings of the 1993 Conference on Auditing and Computer Technology, 1993.
54. A. Wespi, M. Dacier, and H. Debar, "Intrusion Detection Using Variable-Length Audit Trail Patterns, " In Recent Advances in Intrusion Detrection (RAID), 2000.
55. J. P. Anderson, "Computer Security Threat Monitoring and Surveillance, " Technical Report. James P. Anderson Company, Fort Washington, Pennsylvania, April 1980.
56. N. Ye, "A markov chain model of temporal behavior for anomaly detection, " In Proceedings of the 2000 IEEE Systems, Man, and Cybernetics Information Assurance and Security Workshop, 2000.
57. A. Seleznyov and S. Puuronen, "Anomaly Intrusion Detection Systems: Handling Temporal Relations between Events, " Web proceedings of the 2nd International Workshop on Recent Advances in Intrusion Detection (RAID'99), 1999.
58. C. C. Michael, "Finding the vocabulary of program behavior data for anomaly detection, " DARPA Information Survivability Conference and Exposition, 2003, 22-24 April 2003.
59. W. Lee, S. J. Stolfo, and K. W. Mok, "A Data Mining Framework for Building Intrusion Detection Models, " IEEE Symposium on Security and Privacy, Okland, CA, 1999.
60. Y. Li, N. Wu, S. Jajodia, and X. S. Wang, "Enhancing Profiles for Anomaly Detection Using Time Granularities, " Journal of Computer Security, Vol. 10(1), pp. 137-157, 2002.
61. C. Ko, G. Fink, and K. Levitt, "Automated detection of vulnerabilities in privileged programs by execution monitoring, " In Proceedings of the 10th Annual Computer Security Applications Conference, December 1994.
62. C. C. Michael and A. Ghosh, "Using finite automata to mine execution data for intrusion detection: A preliminary report, " In Proceedings of the Third International Workshop in Recent Advances in Intrusion Detection, Toulouse, France, October 2000.
63. H. Feng, O. Kolesnikov, P. Fogla, W. Lee, and W. Gong, "Anomaly Detection using Call Stack Information, " Proceedings of the IEEE Security and Privacy, Oakland, CA, USA, May 11-14, 2003.
64. J. Giffin, S. Jha, and B. Miller, "Efficient contextsensitive intrusion detection, " In 11th Annual Network and Distributed Systems Security Symposium (NDSS), San Diego, California, February 2004.
65. Y. Kim, J.-Y. Jo, and K. Suh, "Baseline Profile Stability for Network Anomaly Detection, " IEEE ITNG 2006, Internet and Wireless Network Security track, Las Vegas, NV, April 2006.
66. L. d. S. Silva, A. F. d. Santos, J. D. d. Silva, and A. Montes, "A Neural Network Application for Attack Detection in Computer Networks, " Instituto Nacional de Pesquisas Espanciais, 2004.
67. Z. Zhang and C. Manikopoulos, "Investigation of neural network classification of computer network attacks, " Proceedings of International Conference on Information Technology: Research and Education, 11-13 Aug. 2003.
68. R. Sommer and V. Paxson, "Enhancing Byte-Level Network Intrusion Detection Signatures with Context, " Proc. of 10th ACM Conference on Computer and Communications Security, 2003.
69. D. Novikov, R. V. Yampolskiy, and L. Reznik, "Artificial Intelligence Approaches for Intrusion Detection, " Long Island Systems Applications and Technology Conference (LISAT2006). Long Island, New York., May 5, 2006.
70. D. Novikov, R. V. Yampolskiy, and L. Reznik, "Anomaly Detection Based Intrusion Detection, " Third International Conference on Information Technology: New Generations (ITNG 2006), Las Vegas, Nevada, USA, April 10-12, 2006.
71. D. Novikov., "Neural Networks to Intrusion Detection., " MS thesis, Rochester Institute of Technology. Rochester, NY, October 2005.
72. D. Liu and F. Huebner, "Application Profiling of IP Traffic, " 27th Annual IEEE Conference on Local Computer Networks, Nov. 6-8, 2002.
73. K. Thompson, G. Miller, and R. Wilder, "Wide area Internet traffic patterns and characteristics, " In IEEE Network, Vol. 11, pp. 10-23, November 1997.
74. M. Banikazemi, D. Poff, and B. Abali, "Storage-based intrusion detection for storage area networks (SANs), " Proceedings. 22nd IEEE / 13th NASA Goddard Conference on Mass Storage Systems and Technologies, 2005., 11-14 April 2005.
75. Y. Zhang and D. Wang, "Research on Object-Storage-Based Intrusion Detection, " 12th International Conference on Parallel and Distributed Systems (ICPADS), 12-15 July 2006.
76. J. L. Griffin, A. G. Pennington, J. S. Bucy, D. Choundappan, N. Muralidharan, and G. R. Ganger, "On the Feasibility of Intrusion Detection Inside Workstation Disks, " Technical Report CMU-PDL-03-106, Carnegie Mellon University, 2003.
77. L.-c. Lam, W. Li, and T.-c. Chiueh, "Accurate and Automated System Call Policy-Based Intrusion Prevention, " in Proceedings of 2006 International Conference on Dependable Systems and Networks (DSN 2006), June 2006.
78. S. A. Hofmeyr, S. Forrest, and A. Somayaji, "Intrusion detection using sequences of system calls, " Journal of Computer Security, Vol. 6, pp. 151-180, 1998.
79. C. Warrender, S. Forrest, and B. Pearlmutter, "Detecting intrusions using system calls: alternative data models, " Proceedings of the 1999 IEEE Symposium on Security and Privacy, Oakland, CA, USA, May 9, 1999.
80. N. Nguyen, P. Reiher, and G. H. Kuenning, "Detecting insider threats by monitoring system call activity, " IEEE Systems, Man and Cybernetics Society Information Assurance Workshop, 18-20 June 2003.
81. C. Marceau, "Characterizing the Behavior of a Program Using Multiple-Length N-grams, " Proceedings of the New Security Paradigms Workshop 2000, Cork, Ireland, Sept. 19-21, 2000.
82. D. Wagner and D. Dean, "Intrusion detection via static analysis, " In IEEE Symposium on Security and Privacy, 2001.
83. A. K. Ghosh, A. Schwatzbard, and M. Shatz, "Learning Program Behavior Profiles for Intrusion Detection, " in Proceedings 1 st USENIX Workshop on Intrusion Detection and Network Monitoring, Santa Clara, California, April 1999.
84. S. Bhatkar, A. Chaturvedi, and R. Sekar, "Dataflow Anomaly Detection, " IEEE Symposium on Security and Privacy, May 2006.
85. I. Koychev and I. Schwab, "Adaptation to Drifting User's Interests, " In Proceedings of ECML2000 Workshop: Machine Learning in New Information Age, Barcelona, Spain, 2000.
86. A. Tsymbal, "The problem of concept drift: definitions and related work, " Technical Report TCDCS-2004-15, Computer Science Department, Trinity College, Dublin, Ireland, 2004.
87. R. V. Yampolskiy and V. Govindaraju, "Dissimilarity Functions for Behavior-Based Biometrics, " Biometric Technology for Human Identification IV. SPIE Defense and Security Symposium, Orlando, Florida, April 9-13, 2007.
88. P. T. Stanton, W. Yurcik, and L. Brumbaugh, "FABS: file and block surveillance system for determining anomalous disk accesses, " Proceedings from the Sixth Annual IEEE Information Assurance Workshop, 15-17 June 2005.
89. Poker-edge. com, "Stats and Analysis, " Available at: http://www.poker-edge.com/stats.php, Retrieved June 7, 2006.
90. DARPA, "Intrusion Detection Evaluation, " MIT Lincoln Laboratory, Available at: http://www.ll.mit.edu/ist/ideval, 1998.
91. W. Lee, S. Stolfo, and K. Mok, "Mining in a Data-Flow Environment: Experience in Network Intrusion Detection, " In Proceedings of the 5th ACM SIGKDD, San Diego, CA, 1999.
92. R. V. Yampolskiy, "Feature Extraction Methods for Character Recognition, " Master's Thesis. Rochester Institute of Technology, Rochester, NY, May 10, 2004.