Is Your Smartband Smart Enough to Know Who You Are: Towards Continuous Physiological Authentication in The Wild
The use of cloud services that process privacy-sensitive information such as digital banking, pervasive healthcare, smart home applications require an implicit continuous authentication solution which will make these systems less vulnerable to the spoofing attacks. Physiological signals can be used for continuous authentication due to their personal uniqueness. Wrist-worn wearable devices such as smartwatches and smartbands became ubiquitous. They are equipped with photoplethysmogram (PPG) sensors which enable to extract heart rate variability (HRV) features. In this study, we show that these devices can be used for continuous physiological authentication, for enhancing the security of the cloud, edge services, and IoT devices. A system that is suitable for the smartband framework comes with new challenges such as relatively low signal quality and artifacts due to placement which were not encountered in full lead ECG systems. After the artifact removal, cleaned physiological signals are fed to the machine learning (ML) algorithms. In order to train our machine learning models, we collected physiological data using off-the-shelf smartbands and smartwatches in a real-life event. Performance evaluation of different machine learning algorithms shows that HRV is a strong candidate for continuous unobtrusive implicit physiological authentication.
READ FULL TEXT