Duth: a user-friendly dual-factor authentication for Android smartphone devices
Version of Record online: 21 JUL 2014
Copyright © 2014 John Wiley & Sons, Ltd.
Security and Communication Networks
Volume 8, Issue 7, pages 1213–1222, 10 May 2015
How to Cite
2015), Duth: a user-friendly dual-factor authentication for Android smartphone devices. Security Comm. Networks, 8: 1213–1222. doi: 10.1002/sec.1075., , and (
- Issue online: 23 MAR 2015
- Version of Record online: 21 JUL 2014
- Manuscript Accepted: 2 JUN 2014
- Manuscript Received: 3 MAR 2014
- user-writing process
With the pervasiveness of smartphones and the richness of mobile apps, many people are storing increasingly sensitive data on them, in greater quantities. In order to protect this sensitive information from misuse due to loss, or other accidental reasons, strong smartphone authentication has become imperative and has received considerable attention in recent years. However, when we directly implement traditional authentication schemes in smartphone devices, the balance between security and user-friendliness of authentication becomes challenging, mainly because of the input-in-motion environments. In this paper, without adding extra hardware devices, we present a user-friendly, dual-factor authentication scheme called Duth, for Android smartphone devices. Specifically, the proposed Duth scheme is characterized by utilizing the spatial and time features of the user-writing process as two factors of authentication; a user can be authenticated only if these two features are fulfilled. We implement Duth in Java as a library, which we make publicly available. With extensive discussions on parameter selection, we choose proper parameters and implement Duth on a smartphone with Android 2.3 for experiments, and the experiment results demonstrate that Duth can indeed achieve efficient and effective dual-factor authentication. Copyright © 2014 John Wiley & Sons, Ltd.