Transient Authentication from First-Person-View Video

Thumbnail Image

Files

Transient_Authentication_from_First-Person-View_Video.pdf (12.98 MB)

Access rights

openAccess
CC BY
publishedVersion

URL

Journal Title

Journal ISSN

Volume Title

A1 Alkuperäisartikkeli tieteellisessä aikakauslehdessä
This publication is imported from Aalto University research portal.
View publication in the Research portal (opens in new window)
View/Open full text file from the Research portal (opens in new window)
Unless otherwise stated, all rights belong to the author. You may download, display and print this publication for Your own personal use. Commercial use is prohibited.

Authors

Date

2025-03-04

Department

Department of Communications and Networking
Department of Information and Communications Engineering

Major/Subject

Mcode

Degree programme

Language

en

Pages

31

Series

Proceedings of the ACM on Interactive, Mobile, Wearable and Ubiquitous Technologies, Volume 9, issue 1

Abstract

We propose PassFrame, a system which utilizes first-person-view videos to generate personalized authentication challenges based on human episodic memory of event sequences. From the recorded videos, relevant (memorable) scenes are selected to form image-based authentication challenges. These authentication challenges are compatible with a variety of screen sizes and input modalities. As the popularity of using wearable cameras in daily life is increasing, PassFrame may serve as a convenient personalized authentication mechanism to screen-based appliances and services of a camera wearer. We evaluated the system in various settings including a spatially constrained scenario with 12 participants and a deployment on smartphones with 16 participants and more than 9 hours continuous video per participant. The authentication challenge completion time ranged from 2.1 to 9.7 seconds (average: 6 sec), which could facilitate a secure yet usable configuration of three consecutive challenges for each login. We investigated different versions of the challenges to obfuscate potential privacy leakage or ethical concerns with 27 participants. We also assessed the authentication schemes in the presence of informed adversaries, such as friends, colleagues or spouses and were able to detect attacks from diverging login behaviour.

Description

Publisher Copyright: © 2025 Copyright held by the owner/author(s). | openaire: EC/HE/101099491/EU//HOLDEN | openaire: EC/HE/101071179/EU//SUSTAIN

Keywords

Always-fresh challenge, First-person-view video, Shoulder-surfing resistance, Transient authentication challenge, Usable security, User authentication

Other note

DOI

10.1145/3712266

Citation

Nguyen, L N, Findling, R D, Poikela, M, Zuo, S & Sigg, S 2025, 'Transient Authentication from First-Person-View Video', Proceedings of the ACM on Interactive, Mobile, Wearable and Ubiquitous Technologies, vol. 9, no. 1, 14. https://doi.org/10.1145/3712266

Permanent link to this item

https://urn.fi/URN:NBN:fi:aalto-202504093151

Collections

[article-cris] Sähkötekniikan korkeakoulu / ELEC