Password recovery mechanism based on keystroke dynamics

Abstract

Automated password recovery process includes needing the user to response a “secret question” defined as part of the user registration process. The second mechanism in use is having the user offer a “hints” during record-keeping that helps the user remember his password. Here, system may be compromise through the use of brute-force attacks, inherent system weakness or easily guessed secret questions and answers. The third mechanism is One Time Password (OTP), where personal phone or alternative user ID is needed. The fourth mechanism is our proposed, password recovery mechanism based on behavioral biometric characteristics, keystroke dynamics data. Here, users are not only identified by their secret questions answers or hints, but their typing style is also accounted for. It improves the security rank and can be used to identify the real user. In this paper, we have also suggested some future plans that also can be effectively implemented by this technique.