Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

GazeTouchPIN: Protecting sensitive data on mobile devices using secure multimodal authentication

: Khamis, M.; Hassib, M.; Zezschwitz, E. von; Bulling, A.; Alt, F.


Association for Computing Machinery -ACM-:
ICMI 2017, 19th ACM International Conference on Multimodal Interaction. Proceedings : Glasgow, UK, November 13 - 17, 2017
New York: ACM, 2017
ISBN: 978-1-4503-5543-8
International Conference on Multimodal Interaction (ICMI) <19, 2017, Glasgow>
Fraunhofer FKIE ()

Although mobile devices provide access to a plethora of sensitive data, most users still only protect them with PINs or patterns, which are vulnerable to side-channel attacks (e.g., shoulder surfing). How-ever, prior research has shown that privacy-aware users are willing to take further steps to protect their private data. We propose GazeTouchPIN, a novel secure authentication scheme for mobile devices that combines gaze and touch input. Our multimodal approach complicates shoulder-surfing attacks by requiring attackers to ob-serve the screen as well as the user’s eyes to and the password. We evaluate the security and usability of GazeTouchPIN in two user studies (N=30). We found that while GazeTouchPIN requires longer entry times, privacy aware users would use it on-demand when feeling observed or when accessing sensitive data. The results show that successful shoulder surfing attack rate drops from 68% to 10.4%when using GazeTouchPIN.