How does a system identify users based on their typing rhythms? Keystroke dynamics is the analysis of typing rhythms to discriminate among users and it has been proposed for detecting impostors (i.e. both insiders and external attackers). Typing biometrics is part of a larger class of biometrics known as "behavioral biometrics" which uses different individual's typing pattern to authenticate individual person's identity.

The case study includes using a dataset which consists of typing speed information of a passcode by group of 51 different users recorded at different time intervals, building a classifier that recognizes typing pattern of different users, test the classifier on 5 different datasets having typing speed information of 5 different users and identify the right user.

The passcode dataset consists of passcode related information of 51 different users. It is a multi-class classification problem with 51 levels. We will be looking at two sets of data:

1. Known.csv
2. Set of 12 files with unknown users

(The set of 12 files are the test files used to test the prediction accuracy of the final classifier selected to predict the imposter. These files were give at the time of presentation by the professor Dr.Christopher Saunders at South Dakota State University. Hence, these files will not be made available in the repository.)

Task 1 : Design a model. Task 2 : Predict the individual user. Task 3 : Provide method's accuracy and reasons of selecting particular methods.

Dataset consists of 1777 observations over 35 columns, which represents typing speed of 51 different individuals who have access to a passcode. Only one user can use system at a time.

Passcode used: .tie5Roanl

Subject sessionIndex Reps Hold time Up-Hold Time Down-Down Time (DD time = Hold time + Up-Down time )

1. Biometric Identification for user authentication.
2. Prevent Identity theft
3. As handwriting is used to identify the author of a written text, we can use typing pattern to distinguish people in a computer-based crime.
4. Access-control and authentication mechanism

1. Improved security benefits.
2. More cost effective.
3. Continuous authentication strategies.

1.Subjects Brief look up at number of reps in each class.

2.Subjects' frequency by session Index All users participate in session 8 but fewer users do not participate in session 7.

Does sessionIndex makes any difference in measurements of passcode for users?

We performed independence test:

Null hypothesis: The true mean of a user in session 7 and session 8 are same.

Alternative hypothesis: The true mean of a user in session 7 and session 8 are different.

We found out that most of the p-values are greater than 0.05. Below are the results:

Conclusion: Fail to reject the null hypothesis at 0.05 significance level.. Hence we conclude that session index does not make any difference in individual user's passcode typing measurements.

Results:

Let us look at the distribution of hold time for 3 users: s003, s004, s005.

Let us look at the distribution of all user's hold time for typing passcode.

Hold time and Up-Down time

Looking at Correlation Matrix of variables: UD and DD variables are highly correlated.

Variables Removed:

X, Rep, SessionIndex, DD variables-highly correlated with other variables and highly skewed

Using 'createDataPartition' method that creates balanced splits of the data. The random sampling occurs within each class and it preserves the overall class distribution of the data.

1. Multinomial Logistic Model

Test data: 95% Confidence Interval (74.39, 80.74)

2. LDS using only H-variables

Test data: 95%Confidence Interval (78.5, 84.42)

3. LDA using H and UD variables

Test data: 95%Confidence Interval (85.31, 90.3)

4. PCA + LDA

I selected 21 Principal components

Test data: 95%Confidence Interval (85.31, 90.3)

5. Random Forest, Bagging, Boosting

Random Forest Test data: 95%Confidence Interval (92.83, 97.51)

6. SVM using linear, poly, radial kernel

SVM radial Test data: 95%Confidence Interval (84.98, 91.97)

Random Forest

Reasons

1. Random Forest is intrinsically suited for multiclass problems
2. Over all model accuracy is good.
3. Class specific accuracy is good.
4. Class specific accuracy for classes with fewer reps is good.
5. We can use data as they are.
6. It reduces overfitting and is therefore more accurate.

Let us look the results of random forest on passcode data set know file.

Results

1. Introduction to statistical Learning in R
2. A Handbook of Statisticsl Analysis using R
3. R graphics Cookbook
4. South Dakota State University Stat 702 online course material

http://www.biometric-solutions.com/keystroke-dynamics.html

https://stats.idre.ucla.edu/r/dae/multinomial-logistic-regression/

https://en.wikipedia.org/wiki/Keystroke_dynamics

http://www.cs.cmu.edu/~keystroke/

https://www.computereconomics.com/article.cfm?id=1181

http://www.sthda.com/english/articles/32-r-graphics-essentials/133-plot-one-variable-frequency-graph-density-distribution-and-more/

https://www.analyticsvidhya.com/blog/2016/03/practical-guide-principal-component-analysis-python/

http://www.sthda.com/english/articles/32-r-graphics-essentials/133-plot-one-variable-frequency-graph-density-distribution-and-more/