There are good passwords and bad passwords but all are currently identified on just their content for verification. Now researchers at the American University of Beirut, Lebanon have been developing a new method of verifying passwords using the way the characters have been typed. This method has been tested before with passwords linked to authentication to the the speed and rhythm of the user’s keystrokes, a method know as key-pattern analysis (KPA).
The new method not only records and uses the time delay between presses but also measures how long each key remains depressed. The researches say that this extra parameter of “intra” timing significantly boosts reliable authentication and improves the overall KPA approach.
The new system would work something like this:
The user enters their password multiple times to set-up a log-in;
The program creates a user profile based on intra and inter timing and other parameters like the relationships between two keys (digraph) and three keys (trigraph);
This profile is stored for comparison when the user logs-in again.
If you are interested in more information about the new research their Paper is available “Optimising password security through key-pattern analysis” is published in the International Journal of Internet Technology and Secured Transactions.
Source : Gizmag