Secure and privacy preserving data processing support for active authentication

Yan Sun; Shambhu Upadhyaya

doi:10.1007/s10796-015-9587-9

Secure and privacy preserving data processing support for active authentication

Yan Sun
, Shambhu Upadhyaya

Department of Computer Science and Engineering

University at Buffalo

SUNY Buffalo

Research output: Contribution to journal › Article › peer-review

16 Scopus citations

Abstract

Keystroke dynamics and mouse movements are effective behavioral biometric modalities for active authentication. However, very little is done on the privacy of collection and transmission of keyboard and mouse data. In this paper, we develop a rule based data sanitization scheme to detect and remove personally identifiable and other sensitive information from the collected data set. Preliminary experiments show that our scheme incurs on average 5.69 % false negative error rate and 0.64 % false positive error rate. We also develop a data transmission scheme using the Extensible Messaging and Presence Protocol (XMPP) to guarantee privacy during transmission. Using these two schemes as a basis, we develop two distinct architectures for providing secure and privacy preserving data processing support for active authentication. These architectures provide flexibility of use depending upon the application environment.

Original language	English
Pages (from-to)	1007-1015
Number of pages	9
Journal	Information Systems Frontiers
Volume	17
Issue number	5
DOIs	https://doi.org/10.1007/s10796-015-9587-9
State	Published - Oct 24 2015

Keywords

Privacy
Sanitization
Security
XMPP

Access to Document

10.1007/s10796-015-9587-9

Cite this

@article{6ddbd427700941bf9909723583019b30,

title = "Secure and privacy preserving data processing support for active authentication",

abstract = "Keystroke dynamics and mouse movements are effective behavioral biometric modalities for active authentication. However, very little is done on the privacy of collection and transmission of keyboard and mouse data. In this paper, we develop a rule based data sanitization scheme to detect and remove personally identifiable and other sensitive information from the collected data set. Preliminary experiments show that our scheme incurs on average 5.69 \% false negative error rate and 0.64 \% false positive error rate. We also develop a data transmission scheme using the Extensible Messaging and Presence Protocol (XMPP) to guarantee privacy during transmission. Using these two schemes as a basis, we develop two distinct architectures for providing secure and privacy preserving data processing support for active authentication. These architectures provide flexibility of use depending upon the application environment.",

keywords = "Privacy, Sanitization, Security, XMPP",

author = "Yan Sun and Shambhu Upadhyaya",

note = "Publisher Copyright: {\textcopyright} 2015, Springer Science+Business Media New York.",

year = "2015",

month = oct,

day = "24",

doi = "10.1007/s10796-015-9587-9",

language = "English",

volume = "17",

pages = "1007--1015",

journal = "Information Systems Frontiers",

issn = "1387-3326",

publisher = "Springer Netherlands",

number = "5",

}

TY - JOUR

T1 - Secure and privacy preserving data processing support for active authentication

AU - Sun, Yan

AU - Upadhyaya, Shambhu

PY - 2015/10/24

Y1 - 2015/10/24

N2 - Keystroke dynamics and mouse movements are effective behavioral biometric modalities for active authentication. However, very little is done on the privacy of collection and transmission of keyboard and mouse data. In this paper, we develop a rule based data sanitization scheme to detect and remove personally identifiable and other sensitive information from the collected data set. Preliminary experiments show that our scheme incurs on average 5.69 % false negative error rate and 0.64 % false positive error rate. We also develop a data transmission scheme using the Extensible Messaging and Presence Protocol (XMPP) to guarantee privacy during transmission. Using these two schemes as a basis, we develop two distinct architectures for providing secure and privacy preserving data processing support for active authentication. These architectures provide flexibility of use depending upon the application environment.

AB - Keystroke dynamics and mouse movements are effective behavioral biometric modalities for active authentication. However, very little is done on the privacy of collection and transmission of keyboard and mouse data. In this paper, we develop a rule based data sanitization scheme to detect and remove personally identifiable and other sensitive information from the collected data set. Preliminary experiments show that our scheme incurs on average 5.69 % false negative error rate and 0.64 % false positive error rate. We also develop a data transmission scheme using the Extensible Messaging and Presence Protocol (XMPP) to guarantee privacy during transmission. Using these two schemes as a basis, we develop two distinct architectures for providing secure and privacy preserving data processing support for active authentication. These architectures provide flexibility of use depending upon the application environment.

KW - Privacy

KW - Sanitization

KW - Security

KW - XMPP

UR - https://www.scopus.com/pages/publications/84942195676

U2 - 10.1007/s10796-015-9587-9

DO - 10.1007/s10796-015-9587-9

M3 - Article

SN - 1387-3326

VL - 17

SP - 1007

EP - 1015

JO - Information Systems Frontiers

JF - Information Systems Frontiers

IS - 5

ER -

Secure and privacy preserving data processing support for active authentication

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this