Browse Definitions :
Definition

keystroke ID (keystroke identification)

Contributor(s): Ivy Wigmore

Keystroke ID (keystroke identification) is a biometric authentication method based on the unique typing dynamics of individuals.

Keystroke dynamics are the patterns of rhythm and timing created when a person types. Elements include:

  • Overall speed.
  • Dwell time (the length of time a key is pressed).  
  • Flight time (the length of time between the depression of one key and the next one).
  • Variations in flight time among particular key combinations.
  • Common errors.

Data captured during authentication is compared to a stored sample for the user. Some systems also monitor the dynamics throughout a session or sample it periodically to ensure that the same user is still involved and the session has not been hijacked. 

The patterns of people's keystroke dynamics are known as their typeprints; they are as distinctive as the patterns of ridges and branches on their fingertips that yield fingerprints and the vocal characteristics that yield voiceprints.

Benefits of keystroke ID:

  • Because it's software-based, deployment is simple and inexpensive.
  • User keystroke dynamics can't be lost, stolen or forgotten.
  • The dynamics cannot be copied or faked. 
  • Both false positives and false negatives tend to be low.

Keystroke identification goes back to the days of the telegraph, when  operators were known by their distinctive patterns (known as the telegraph operator's "fist"). During the second World War, a methodology known as the "fist of the sender" helped to identify the source of Morse code to confirm that a particular message was, in fact, from the legitimate sender.

Keystroke ID is sometimes used as one method of multifactor authentication (MFA).

This was last updated in February 2015

Continue Reading About keystroke ID (keystroke identification)

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

File Extensions and File Formats

SearchCompliance

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

  • compliance framework

    A compliance framework is a structured set of guidelines that details an organization's processes for maintaining accordance with...

  • regulatory compliance

    Regulatory compliance is an organization's adherence to laws, regulations, guidelines and specifications relevant to its business...

SearchSecurity

  • DNS over HTTPS (DoH)

    DNS over HTTPS (DoH) is a relatively new protocol that encrypts domain name system traffic by passing DNS queries through a ...

  • integrated risk management (IRM)

    Integrated risk management (IRM) is an approach to risk management that uses a set of practices and processes to improve an ...

  • MITRE ATT&CK framework

    The MITRE ATT&CK (pronounced 'miter attack') framework is a free, globally accessible service that provides comprehensive and ...

SearchHealthIT

  • telemedicine (telehealth)

    Telemedicine is the remote delivery of healthcare services, such as health assessments or consultations, over the ...

  • Project Nightingale

    Project Nightingale is a controversial partnership between Google and Ascension, the second largest health system in the United ...

  • medical practice management (MPM) software

    Medical practice management (MPM) software is a collection of computerized services used by healthcare professionals and ...

SearchDisasterRecovery

SearchStorage

  • M.2 SSD

    An M.2 SSD is a solid-state drive (SSD) that conforms to a computer industry specification and is used in internally mounted ...

  • kilobyte (KB or Kbyte)

    A kilobyte (KB or Kbyte) is a unit of measurement for computer memory or data storage used by mathematics and computer science ...

  • virtual memory

    Virtual memory is a memory management capability of an operating system (OS) that uses hardware and software to allow a computer ...

Close