Leveraging the Effects of Cognitive Function on Input Device Analytics to Improve Security - April 2017

Public Audience
Purpose: To highlight project progress. Information is generally at a higher level which is accessible to the interested public. All information contained in the report (regions 1-3) is a Government Deliverable/CDRL.

PI(s):  David L. Roberts, Robert St. Amant
Researchers: Alok Goel, Ignacio X. Dominguez, Jayant Dhawan, Nischal Shresth

HARD PROBLEM(S) ADDRESSED

• Human Behavior - Our work addresses understanding human behavior through observations of input device usage. The basic principles we are developing will enable new avenues for characterizing risk and identifying malicious (or accidental) uses of systems that lead to security problems. The ultimate goal of our work is the development of a novel class of security proofs that we call "Human Subtlety Proofs" (HSPs). HSPs combine the unobtrusiveness of Human Observational Proofs with the interactivity of Human Interactive Proofs, which hopefully will lead to more secure interactions.

PUBLICATIONS

• None this quarter. 

ACCOMPLISHMENT HIGHLIGHTS

• We have made another leap forward in implementing Human Subtlety Proofs (HSPs), which provide the building blocks for identifying authorized, but risky, behaviors of system users. 

• Our efforts this quarter have resulted in completion of the framework for the final data labelling tasks, which result in a detailed data set for 40 users comprised of eye gaze, mouse movements, and/or keyboard usage. These labeled data are the building cornerstone of real-time HSPs that can be tailored to individual users. 

• We have completed implementation of the study infrastructure for evaluating HSPs in a linux command line environment, where we will test their accuracy on a sample system administration task.