CPC H04L 63/0861 (2013.01) [G06F 3/017 (2013.01); G06F 3/03543 (2013.01); G06F 3/03547 (2013.01); G06F 3/04845 (2013.01); G06F 3/04883 (2013.01); H04L 63/083 (2013.01); G06F 3/041 (2013.01); H04L 2463/082 (2013.01)] | 16 Claims |
1. A method comprising:
(a) storing a representation of a secret data-item of a particular user, wherein said secret data-item is one of: a password, a Personal Identification Number (PIN);
(b) generating a user authentication session that requires said particular user to enter said secret data-item by performing a task comprised of on-screen operations in which said user drags or moves on-screen objects to input said secret data-item;
(c) during said user authentication session, monitoring user gestures of user performance of said task; and extracting from said user gestures a behavioral characteristic that characterizes user performance of said task;
(d1) determining whether or not said user gestures correspond to correct entry of said secret data-item;
(d2) determining whether or not the behavioral characteristic that was extracted in step (c), matches a previously-stored reference behavioral characteristic that was extracted from past on-screen operations that were previously associated with said particular user during previous log-in sessions;
(e) if the determining of step (d1) is negative or the determining of step (d2) is negative, then: generating a notification that user authentication is rejected;
wherein said log-in task comprises a requirement to enter said password or said PIN, by drawing on-screen lines among on-screen representations of characters;
wherein the determining of step (d2) is performed based on at least one of: (I) a speed of on-screen gestures in which said user draws said on-screen lines, (II) a curvature level of on-screen gestures in which said user draws said on-screen lines.
|