Behaviosec: mobile app user identification by behavioral parameters

About passwords on Habré (and not only on Habré) have already been written more than once. The usual identification system with a login / password has quite a few flaws. Nevertheless, there are not so many alternative identification systems, and if we talk about fingerprint and voice systems, then it is also very far from perfect.

Not so long ago, a new promising technology, which has already been tested in practice. This is a method of identifying a user by his behavioral parameters, while typing on the display of a mobile device. Now checking such a system is carried out by a number of Scandinavian banks for their mobile applications.
')
The new method, Behaviosec, was developed by a start-up of the same name and consists of analyzing the time between pressing buttons and application interface elements, locations, pressure, pressure and a number of other parameters. According to the developers and those who tested the application, the reliability of user identification is about 99.7%.

At the same time, the system will be introduced into mobile banking applications as an auxiliary method of identification. Now, even if someone spied the password to enter the application, and was able to steal the smartphone, it will not be possible to enter the application - the system will “understand” that this is a different user.

In its current version, Behaviosec assesses how a person clicks on the display while working with a mobile banking application (for example, evaluating how to enter a password and other data). Over time, the system learns and is able to distinguish the current owner from other possible users.



Scandinavian banks, including Danske Bank, were convinced of the reliability of the Behaviosec system, and by the end of the year each user of the mobile Internet banking application in Sweden, Norway and Denmark will work with Behaviosec, in addition to the standard login / password system. In this case, the behavioral characteristics of millions of users will be analyzed by banking systems.

The main goal of the founder of the startup Behaviosec (it was created in 2011, at the Technological University of Luleå, Sweden) is the ability to identify the user with a mobile device without having to enter passwords, captcha, or something else. Now the system determines the user after 20-60 seconds of a person working with a mobile device. But soon Behaviosec will become faster: a prototype of the system is ready, which allows you to identify the user by holding and moving your phone in space.

According to the author Behaviosec, to develop a similar system for computers it takes several more years.

Via forbes