The authentication field is evolving towards mechanisms able to keep users continuously authenticated without the necessity of remembering or possessing authentication credentials. While existing continuous authentication systems have demonstrated their suitability for single-device scenarios, the Internet of Things and next generation of mobile networks (5G) are enabling novel multi-device scenarios -- such as Smart Offices -- where continuous authentication is still an open challenge. The paper at hand, proposes an AI-based, privacy-preserving and multi-device continuous authentication architecture called AuthCODE. A realistic Smart Office scenario with several users, interacting with their mobile devices and personal computer, has been used to create a set of single- and multi-device behavioural datasets and validate AuthCODE. A pool of experiments with machine and deep learning classifiers measured the impact of time in authentication accuracy and improved the results of single-device approaches by considering multi-device behaviour profiles. The f1-score average reached for XGBoost on multi-device profiles based on 1-minute windows was 99.33%, while the best performance achieved for single devices was lower than 97.39%. The inclusion of temporal information in the form of vector sequences classified by a Long-Short Term Memory Network, allowed the identification of additional complex behaviour patterns associated to each user, resulting in an average f1-score of 99.02% on identification of long-term behaviours.
翻译:认证领域正在演变为能够保持用户连续认证而无需记忆或拥有认证证书的机制;虽然现有的连续认证系统已经表明它们适合单一设备情景,但物联网和下一代移动网络(5G)正在促成新的多设备情景 -- -- 例如智能办公室 -- -- 持续认证仍是一个公开的挑战。手头的论文建议建立一个基于AI、隐私保护和多设备的持续认证架构,称为AuthCODE。一个现实的智能办公室情景,与几个用户互动,与其移动设备和个人计算机互动,已经用于创建一套单一和多设备行为数据集,并验证AuthCODE。与机器和深层学习分类人员进行的一系列实验,通过考虑多设备行为特征描述,衡量时间在认证准确性方面的影响,改进了单一设备做法的结果。基于1分钟窗口的多设备配置的XGBOost的f1 核心平均值为99.33%,而单个设备的最佳性能则低于97.39 % 。将时间信息输入了由服务器和深层数据序列的每部时间信息,允许通过长期的用户行为模式,在服务器的每个系统中进行一次详细识别。