Seven Ways DARPA Is Trying To Kill The Password

Seven Ways DARPA Is Trying To Kill The Password

www.fortunascorner.wordpress.com

Martyn Williams, writing on the August 8, 2014 website — TechWorld.com, writes that “from analyzing the way you walk — to your heartbeat — these futuristic systems could soon be here.” “With the news last week that Russian hackers stole as many as 1.2B Internet credentials,” Mr. Marty asks, “Isn’t it time we dumped the user name and password?”

“A lot of the best technology today,” Mr. Williams writes, “exploits biometric factors, such as retina patterns, fingerprints, and voice analysis; but beyond that, — a number of researchers are looking to tap into the way we think, walk, and breathe, to differentiate between us — and, an intruder.” “Helping to lead this effort,” notes Mr. Williams, “is DARPA, the U.S. military’s Defense Advanced Research Projects Agency. It’s Active Authentication Project, is funding research at a number of institutions working on desktop and mobile technologies that work — not just for the initial login; but, continuously, while the user is accessing the device. The array of sensors already found in mobile phones, makes some of the ideas particularly interesting,” Mr. Williams observes.

“The technologies exploit data that’s already available inside [the] devices; but, utilize it in new ways,” said Richard Guidorizzi, Program Manager of the project at DARPA. “Except during lab testing, we did not need to create new devices to attach to your phone to drain your battery. They were able to use what was already there with a great deal of success,” he said.

“So, when might that be available?,” asks Mr. Williams. “The project is still ongoing; but, is starting to attract some interest,” he adds. “Some of my [teams] are already being approached by some of the largest companies in the world to incorporate their technology into their products, including smartphones, and Web-based technologies,” Guidorizzi said.

Micro Hand Movements

“A project underway at the New York Institute of Technology, aims to analyze micro movements and oscillations in your hand, as you hold a smartphone to determine the identity of the user. It is looking at touch-burst activity, which happens when a user performs a series of touch stokes and gestures, and the pause between those touches and gestures while the user is consuming content.”

Activity-Based Analysis

“SRI International in Silicon Valley is trying to exploit the accelerometers and gyro sensors already in smartphones to extract unique and distinguishing characteristics of the way a user walks and stands,” writes Mr. Williams. “Your stride length, the way you balance your body, the speed you walk — are all individual to you. Additional sensors can help determine physical characteristics, such as arm length, and the users physical situation, i.e., – proximity to others; and, whether the user is sitting, standing, or picking something up, as well as texting or talking on the phone.”

Stylometry

“The differences in how we use language, could be enough to tell us apart,” notes Mr. Williams. “Drexel University is trying to extract author fingerprints from the large volumes of text we typically enter into our PCs and smartphones; and then, use that to spot when someone else might be at [out] keyboard. This could be the words used, individual grammar quirks, sentence construction; and, even the errors individuals are prone to making again, and again. The technology can be tied together with another keyboard-based authentication method — the analysis of the way a user types, such as their keyboard speed and pauses between letters — to make an even more secure authentication system.”

Microwave Heartbeats

“NASA’s Jet Propulsion Laboratory,” writes Mr. Williams, “is trying to detect the individual features of your heartbeat from a phone. Microwave signals emitted by the phone are reflected back by your body, collected by sensors in the phone; and, amplified to detect your heart rhythm. This might have the added bonus of being able to alert you to see a doctor — should a subtle change in your heartbeat happen.

System Anomalies

“The last thing anyone wants to see on a PC is an error message,” writes Mr. Williams [I can think of much worse]; but, this type of annoyance might have a role to play in [web-based] security. By throwing up random error messages; and, analyzing how users respond to them, the Southwest Research Institute is hoping to identify individuals and spot intruders. So, next time your PC tells you it’s out of memory; and, asks if you want to report the issue — think carefully — it could be testing you.”

Biometric Analysis

“Perhaps most familiar to people through fingerprint sensors,” Mr. Williams observes, “biometric analysis seeks to exploit a wide-range of personal characteristics. Li Creative Technologies, is developing a voice-based system that can be used to unlock a mobile device. You’ll be prompted to say a paraphrase, and the software doesn’t just monitor if the phrase was correct; but, whether you were the one saying it. A second function continuously monitors what’s being said around the device to detect if another user has picked up the phone — and, is attempting to access it.”

Virtual Fingerprinting

“The University of Maryland is using visual streams to make sure you’re the one using your PC or phone,” Mr. Williams notes. “On the desktop it looks at things like the way you organize windows and resize them, your work patterns; and, limitations in mouse movements. On the phone, the system pulls in three video streams: an image of you from the front-facing camera, an image of your surroundings (or shoes, or pants) captured with the rear-facing camera, and your screen activity from the display. Researchers hope that taken together, these three streams will be distinct enough while using the device.”

We’re Losing The Password War

Leslie Horn, writing in the August 12, 2012 edition of Gizmodo.com, summed it up pretty well: “The problem, you see, is that our passwords are spreading across more and more accounts, while technology makes cracking passwords ever easier.” Charlie Warzel, writing in the April 11, 2014 edition of BuzzFeed.com, writes that “the critical flaw with Internet passwords is systemic; and, the fundamental structure of usernames and passwords grow more obsolete each day. It’s a technology built for the Internet that no longer exists,” he argues.

And, experts don’t seem to agree on the best course of action/way ahead. Jeffery Goldberg, an engineer for the for the password management software firm, 1Password, who’s official title is the “Defender Against The Dark Arts,” argues that “biometrics are emphatically not a solution. Imagine,” he says, “a password that you could never change; and that, anyone within listening, photographing, or fingerprint lifting distance could copy. Your voice may be your passport, but it is a lousy secret.”

Let’s hope that DARPA is successful in devising a new way to verify we are who we say we are for Internet purposes in the not too distant future. Until then, two-step authentication should be used as much as possible. One password, is not enough. V/R, RCP

30 comments

  1. accept our apology with this oversight the best link will be:
    [url=http://www.ulka.fr/Common/parajumpers/]parajumpers kodiak pas cher[/url]

  2. many thanks, initial I had been loosing with training of two, after that it doesn’t matter what easy rather when I browse the three recommendations, super thank you!
    louboutin france

  3. Perfect! Exactly as described. Fast shipping. Thanks!
    Wholesale replica bags

  4. Hurrah! Finally I got a webpage from where I know how to truly get valuable
    information regarding my study and knowledge.

  5. Excellent article. I will be facing some of these issues as well..

  6. Hello There. I discovered your weblog the usage of msn. That
    is an extremely well written article. I will make sure to
    bookmark it and return to learn extra of your helpful information.
    Thanks for the post. I’ll certainly comeback.

  7. Good day! I could have sworn I’ve visited this blog before but after browsing through many
    of the articles I realized it’s new to me. Anyways,
    I’m certainly delighted I found it and I’ll be
    bookmarking it and checking back frequently!

  8. Hi there! I could have sworn I’ve visited this
    site before but after looking at a few of the articles I realized it’s new to
    me. Anyhow, I’m definitely happy I discovered it and I’ll be book-marking it
    and checking back often!

  9. Oh my goodness! Amazing article dude! Thanks, However I am having issues with your RSS.
    I don’t know why I cannot join it. Is there
    anybody having identical RSS problems? Anybody who knows the solution will you kindly respond?
    Thanx!!

  10. Its such as you read my thoughts! You appear to know so much
    about this, like you wrote the ebook in it or something.
    I believe that you can do with a few percent
    to drive the message house a little bit, however other than that, that is
    wonderful blog. A fantastic read. I will certainly
    be back.

  11. This design is spectacular! You most certainly know how to keep a reader amused.
    Between your wit and your videos, I was almost moved to start my own blog (well, almost…HaHa!) Great job.
    I really loved what you had to say, and more than that, how you
    presented it. Too cool!

  12. Does your website have a contact page? I’m having a
    tough time locating it but, I’d like to send you an e-mail.
    I’ve got some recommendations for your blog you might be interested in hearing.
    Either way, great site and I look forward to seeing
    it expand over time.

  13. Asking questions are truly fastidious thing if you are
    not understanding anything totally, however this article presents nice understanding even.

  14. Hey there, I think your site might be having browser compatibility issues.
    When I look at your blog in Chrome, it looks fine but when opening in Internet Explorer, it has some
    overlapping. I just wanted to give you a quick heads up!
    Other then that, terrific blog!

  15. I am extremely inspired with your writing abilities as neatly
    as with the format in your blog. Is that this a paid subject
    or did you customize it yourself? Either way stay up
    the excellent high quality writing, it’s rare to look a great weblog like
    this one nowadays..

  16. In fact when someone doesn’t be aware of afterward its up to other viewers that they will assist, so here it happens.

  17. Great post. I’m experiencing a few of these issues as well..

  18. Heya i am for the first time here. I found this board and I find It truly useful & it
    helped me out much. I hope to give something back and
    help others like you helped me.

  19. hey there and thank you for your information – I’ve definitely picked up
    something new from right here. I did however expertise
    a few technical points using this site, as I experienced to reload the website many times previous to I could get it
    to load properly. I had been wondering if your web hosting
    is OK? Not that I am complaining, but sluggish loading instances times will
    sometimes affect your placement in google and could damage
    your quality score if ads and marketing with Adwords. Anyway I’m adding this RSS
    to my email and can look out for a lot more of your respective interesting content.
    Make sure you update this again soon.

  20. Hey very interesting blog!

  21. Nice post. I learn something totally new and challenging on blogs
    I stumbleupon on a daily basis. It’s always exciting to read articles from
    other authors and practice a little something from their web sites.

  22. Hi there this is kinda of off topic but I was wondering if blogs
    use WYSIWYG editors or if you have to manually code with HTML.
    I’m starting a blog soon but have no coding knowledge so I wanted
    to get advice from someone with experience. Any help would be
    greatly appreciated!

  23. I think the admin of this web page is genuinely
    working hard for his site, for the reason that here every information is quality based
    information.

  24. Right now it sounds like Movable Type is the top blogging platform out there right
    now. (from what I’ve read) Is that what you are using on your blog?

  25. https://www.avpu.az/10725-2/ looking for older people in phoenix

  26. https://showfx.ro/2020/04/03/69364/ what dating online sites are no membership

  27. What you published made a ton of sense. But, think on this, what if you composed a catchier post title? I mean, I don’t want to tell you how to run your website, but what if you added something that makes people want more? I mean it is kinda plain. You might peek at Yahoo’s front page and see how they create post headlines to grab viewers to click. You might try adding a video or a pic or two to grab readers interested about what you’ve written. In my opinion, it would bring your blog a little bit more interesting.

  28. It’s remarkable in support of me to have a web page, which is helpful designed for my knowledge. thanks admin

Leave a Reply

Your email address will not be published. Required fields are marked *