International Journal of Information Security

, Volume 1, Issue 2, pp 69–83 | Cite as

Password hardening based on keystroke dynamics

  • Fabian Monrose
  • Michael K. Reiter
  • Susanne Wetzel
Regular contribution

Abstract.

We present a novel approach to improving the security of passwords. In our approach, the legitimate user’s typing patterns (e.g., durations of keystrokes and latencies between keystrokes) are combined with the user’s password to generate a hardened password that is convincingly more secure than conventional passwords alone. In addition, our scheme automatically adapts to gradual changes in a user’s typing patterns while maintaining the same hardened password across multiple logins, for use in file encryption or other applications requiring a long-term secret key. Using empirical data and a prototype implementation of our scheme, we give evidence that our approach is viable in practice, in terms of ease of use, improved security, and performance.

Key words: Security – Biometrics – Cryptographic – Key generation 

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© Springer-Verlag 2001

Authors and Affiliations

  • Fabian Monrose
    • 1
  • Michael K. Reiter
    • 1
  • Susanne Wetzel
    • 1
  1. 1.Bell Labs, Lucent Technologies, Murray Hill, N.J., USAUS

Personalised recommendations