For a More-Secure Password, Watch How You Type

A text password – no matter how many times you change it or how many illogical symbols you incorporate into it – is always going have some inherent weaknesses: It can be stolen via keystroke software, broken into by password-recovery programs, and it can fall into the wrong hands if written down or shared with a co-worker.

All of this drives IT managers crazy, which has driven a movement toward two-factor authentication in logical access control. A group of researchers at the American University in Beirut have come up with an unusual biometric that could be used as for that second factor: your typing pattern.

That’s right. The process, called key-pattern analysis, records timing with which a user types in his password and then compares that template to the timing every person uses when trying to gain access to the digital asset. Upon enrollment, a user has to type the password in several times, to allow for all the variations possible.

The field of key-pattern analysis has actually been around for a few decades, but this research from the American University in Beirut, advances it into the realm of the useable. Previous researchers had failed to take into account the fact that quick typists sometimes press more than one key at a time. As such, this effort at producing an effective key-pattern analysis authenticator looked at the length of time for which a user presses the key, which the researchers say gives a better – and more robust – picture of typing patterns.

One of the study’s authors, Ravel Jabbour, points out that, as key-pattern analysis doesn’t require any extra equipment, it is much less costly than solutions that require extra equipment, such as a card reader, at every work station. And, Jabbour said, key-pattern analysis programs should work almost as well as sophisticated biometrics, such as iris or fingerprint scans. “If the profile building phase is conducted with care, there should be no real problem with key-pattern analysis,” he said.

About the Author

Laura Williams is content development editor for Security Products magazine.

Featured

  • Facing Facts for Facilities

    Despite the proliferation of constantly evolving security solutions, there remains a troubling trend among many facility operators who often neglect the most important security assets within their organization. Keys and shared devices like radios, laptops and tablets are crucial to successful operations, yet many operators are managing them haphazardly through outdated storage systems like pegboards and notebooks. Read Now

  • Report Reveals Security Training Reduces Global Phishing Click Rates by 86%

    KnowBe4, the cybersecurity platform that comprehensively addresses human risk management, today launched its “Phishing by Industry Benchmarking Report 2025” which measures an organization’s Phish-prone Percentage (PPP) — the percentage of employees likely to fall for social engineering or phishing attacks, indicating the organization’s overall susceptibility to phishing threats. This year’s report found a global average baseline PPP of 33.1%, meaning a third of employees interact with phishing simulations before taking part in best-practice security awareness training (SAT).COVER 2025-PIB-NA-Report_EN-US Read Now

  • TSA Begins REAL ID Full Enforcement Today

    Today, the Transportation Security Administration (TSA) announced the imminent implementation of its REAL ID enforcement measures at TSA checkpoints nationwide. Read Now

  • Body-Worn Cameras on the Rise

    On the evening of Oct. 29, 2024, the owner of 300 Guard based in Houston, was shot while on duty at a convenience store. He returned fire. He was wearing a plated vest and thankfully recovered in the hospital. Read Now

  • Brazil Port Enhances Surveillance and Supports Wildlife Conservation with Sustainable Technology

    Ferroport, which operates the iron ore terminal at the Port of Açu in São João da Barra, Rio de Janeiro, Brazil, has deployed state-of-the-art video surveillance cameras from Axis Communications to enhance nighttime security and visibility, while decreasing environmental impact and prioritizing sustainability. With cutting-edge technology, the port now has precise surveillance cameras that capture high-quality nighttime images, while reducing the amount of artificial lighting that negatively impacts the surrounding ecosystem. Read Now

Most   Popular

New Products

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area.

  • FEP GameChanger

    FEP GameChanger

    Paige Datacom Solutions Introduces Important and Innovative Cabling Products GameChanger Cable, a proven and patented solution that significantly exceeds the reach of traditional category cable will now have a FEP/FEP construction.

  • AC Nio

    AC Nio

    Aiphone, a leading international manufacturer of intercom, access control, and emergency communication products, has introduced the AC Nio, its access control management software, an important addition to its new line of access control solutions.