{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,2]],"date-time":"2026-07-02T03:55:44Z","timestamp":1782964544905,"version":"3.54.5"},"reference-count":50,"publisher":"Association for Computing Machinery (ACM)","issue":"1","license":[{"start":{"date-parts":[[2016,6,16]],"date-time":"2016-06-16T00:00:00Z","timestamp":1466035200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"DOI":"10.13039\/501100000266","name":"Engineering and Physical Sciences Research Council","doi-asserted-by":"publisher","award":["EP\/M50659X\/1"],"award-info":[{"award-number":["EP\/M50659X\/1"]}],"id":[{"id":"10.13039\/501100000266","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["ACM Trans. Priv. Secur."],"published-print":{"date-parts":[[2016,8,5]]},"abstract":"<jats:p>We introduce a novel biometric based on distinctive eye movement patterns. The biometric consists of 20 features that allow us to reliably distinguish users based on differences in these patterns. We leverage this distinguishing power along with the ability to gauge the users\u2019 task familiarity, that is, level of knowledge, to address insider threats. In a controlled experiment, we test how both time and task familiarity influence eye movements and feature stability, and how different subsets of features affect the classifier performance. These feature subsets can be used to tailor the eye movement biometric to different authentication methods and threat models. Our results show that eye movement biometrics support reliable and stable continuous authentication of users. We investigate different approaches in which an attacker could attempt to use inside knowledge to mimic the legitimate user. Our results show that while this advance knowledge is measurable, it does not increase the likelihood of successful impersonation. In order to determine the time stability of our features, we repeat the experiment twice within 2 weeks. The results indicate that we can reliably authenticate users over the entire period. We show that lower sampling rates provided by low-cost hardware pose a challenge, but that reliable authentication is possible even at the rate of 50Hz commonly available with consumer-level devices. In a second set of experiments, we evaluate how our authentication system performs across a variety of real-world tasks, including reading, writing, and web browsing. We discuss the advantages and limitations of our approach in detail and give practical insights on the use of this biometric in a real-world environment.<\/jats:p>","DOI":"10.1145\/2904018","type":"journal-article","created":{"date-parts":[[2016,6,17]],"date-time":"2016-06-17T19:43:40Z","timestamp":1466192620000},"page":"1-31","source":"Crossref","is-referenced-by-count":38,"title":["Looks Like Eve"],"prefix":"10.1145","volume":"19","author":[{"given":"Simon","family":"Eberz","sequence":"first","affiliation":[{"name":"University of Oxford, Oxford, United Kingdom"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Kasper B.","family":"Rasmussen","sequence":"additional","affiliation":[{"name":"University of Oxford, Oxford, United Kingdom"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Vincent","family":"Lenders","sequence":"additional","affiliation":[{"name":"Armasuisse, Thun, Switzerland"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Ivan","family":"Martinovic","sequence":"additional","affiliation":[{"name":"University of Oxford, Oxford, United Kingdom"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2016,6,16]]},"reference":[{"key":"e_1_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.visres.2004.05.009"},{"key":"e_1_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.13176\/11.427"},{"key":"e_1_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-02002-5_4"},{"key":"e_1_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1007\/11499145_79"},{"key":"e_1_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/PRISMS.2013.6927175"},{"key":"e_1_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.patcog.2014.02.017"},{"key":"e_1_2_1_7_1","volume-title":"Dictionary of Eye Terminology","author":"Cassin Barbara","unstructured":"Barbara Cassin , Melvin L. Rubin , and Sheila Solomon . 1984. Dictionary of Eye Terminology . Wiley Online Library . Barbara Cassin, Melvin L. Rubin, and Sheila Solomon. 1984. Dictionary of Eye Terminology. Wiley Online Library."},{"key":"e_1_2_1_8_1","volume-title":"CyberSecurity Watch Survey","author":"CERT.","year":"2011","unstructured":"CERT. 2011. CyberSecurity Watch Survey . Software Engineering Institute, Carnegie Mellon University. Retrieved from http:\/\/resources.sei.cmu.edu\/asset_files\/Presentation\/ 2011 _017_001_54029.pdf. CERT. 2011. CyberSecurity Watch Survey. Software Engineering Institute, Carnegie Mellon University. Retrieved from http:\/\/resources.sei.cmu.edu\/asset_files\/Presentation\/2011_017_001_54029.pdf."},{"key":"e_1_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1016\/S0031-3203(03)00035-9"},{"key":"e_1_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1037\/0021-843X.99.4.327"},{"key":"e_1_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.5555\/2372366.2372372"},{"key":"e_1_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/1572532.1572542"},{"key":"e_1_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICETET.2008.17"},{"key":"e_1_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1016\/B978-1-55860-377-6.50032-3"},{"key":"e_1_2_1_15_1","volume-title":"Your face is not your password face authentication bypassing lenovo--asus--toshiba. Black Hat Briefings","author":"Duc Nguyen Minh","year":"2009","unstructured":"Nguyen Minh Duc and Bui Quang Minh . 2009. Your face is not your password face authentication bypassing lenovo--asus--toshiba. Black Hat Briefings ( 2009 ). Nguyen Minh Duc and Bui Quang Minh. 2009. Your face is not your password face authentication bypassing lenovo--asus--toshiba. Black Hat Briefings (2009)."},{"key":"e_1_2_1_16_1","volume-title":"Eye Tracking Methodology: Theory and Practice","author":"Duchowski Andrew","unstructured":"Andrew Duchowski . 2007. Eye Tracking Methodology: Theory and Practice . Vol. 373 . Springer . Andrew Duchowski. 2007. Eye Tracking Methodology: Theory and Practice. Vol. 373. Springer."},{"key":"e_1_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2015.23203"},{"key":"e_1_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1111\/j.0956-7976.2004.00697.x"},{"key":"e_1_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2012.2225048"},{"key":"e_1_2_1_21_1","unstructured":"ITU Gaze Group. 2015. Eye tracking and gaze interaction. Retrieved from www.gazegroup.org.  ITU Gaze Group. 2015. Eye tracking and gaze interaction. Retrieved from www.gazegroup.org."},{"key":"e_1_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1016\/S0042-6989(02)00263-8"},{"key":"e_1_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.3389\/fneur.2011.00010"},{"key":"e_1_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/2168556.2168563"},{"key":"e_1_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1109\/ITSC.2002.1041208"},{"key":"e_1_2_1_26_1","volume-title":"Eye tracking in advanced interface design. Virtual Environments and Advanced Interface Design","author":"Jacob Robert J. K.","year":"1995","unstructured":"Robert J. K. Jacob . 1995. Eye tracking in advanced interface design. Virtual Environments and Advanced Interface Design ( 1995 ), 258--288. Robert J. K. Jacob. 1995. Eye tracking in advanced interface design. Virtual Environments and Advanced Interface Design (1995), 258--288."},{"key":"e_1_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2006.873653"},{"key":"e_1_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1001\/archpsyc.1978.01770280111012"},{"key":"e_1_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1007\/BF00313742"},{"key":"e_1_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/1966913.1966983"},{"key":"e_1_2_1_31_1","volume-title":"Pupil diameter and load on memory. Science 154, 3756","author":"Kahneman Daniel","year":"1966","unstructured":"Daniel Kahneman and Jackson Beatty . 1966. Pupil diameter and load on memory. Science 154, 3756 ( 1966 ), 1583--1585. Daniel Kahneman and Jackson Beatty. 1966. Pupil diameter and load on memory. Science 154, 3756 (1966), 1583--1585."},{"key":"e_1_2_1_32_1","volume-title":"Trust, Privacy and Security in Digital Business","author":"Kandias Miltiadis","unstructured":"Miltiadis Kandias , Alexios Mylonas , Nikos Virvilis , Marianthi Theoharidou , and Dimitris Gritzalis . 2010. An insider threat prediction model . In Trust, Privacy and Security in Digital Business . Springer , 26--37. Miltiadis Kandias, Alexios Mylonas, Nikos Virvilis, Marianthi Theoharidou, and Dimitris Gritzalis. 2010. An insider threat prediction model. In Trust, Privacy and Security in Digital Business. Springer, 26--37."},{"key":"e_1_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1145\/1743666.1743712"},{"key":"e_1_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1145\/1280680.1280683"},{"key":"e_1_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSPCC.2012.6335584"},{"key":"e_1_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1046\/j.1475-1313.2002.00023.x"},{"key":"e_1_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.neuron.2005.11.033"},{"key":"e_1_2_1_38_1","unstructured":"Michelle Keeney Eileen Kowalski Dawn Cappelli Andrew Moore Timothy Shimeall and Stephanie Rogers. 2005. Insider threat study: Computer system sabotage in critical infrastructure sectors. Retrieved from http:\/\/www.cert.org\/archive\/pdf\/insidercross051105.pdf.  Michelle Keeney Eileen Kowalski Dawn Cappelli Andrew Moore Timothy Shimeall and Stephanie Rogers. 2005. Insider threat study: Computer system sabotage in critical infrastructure sectors. Retrieved from http:\/\/www.cert.org\/archive\/pdf\/insidercross051105.pdf."},{"key":"e_1_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSMCA.2010.2052602"},{"key":"e_1_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1177\/154193129904300114"},{"key":"e_1_2_1_41_1","volume-title":"Proceedings of the 21st Network and Distributed System Security Symposium (NDSS\u201914)","author":"Rasmussen Kasper B.","year":"2014","unstructured":"Kasper B. Rasmussen , Marc Roeschlin , Ivan Martinovic , and Gene Tsudik . 2014 . Authentication using pulse-response biometrics . In Proceedings of the 21st Network and Distributed System Security Symposium (NDSS\u201914) . Kasper B. Rasmussen, Marc Roeschlin, Ivan Martinovic, and Gene Tsudik. 2014. Authentication using pulse-response biometrics. In Proceedings of the 21st Network and Distributed System Security Symposium (NDSS\u201914)."},{"key":"e_1_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.1037\/1076-898X.7.3.219"},{"key":"e_1_2_1_43_1","volume-title":"S\u00e9rgio Tenreiro de Magalh\u00e3es, and Henrique M. D. Santos","author":"Revett Kenneth","year":"2008","unstructured":"Kenneth Revett , Hamid Jahankhani , S\u00e9rgio Tenreiro de Magalh\u00e3es, and Henrique M. D. Santos . 2008 . A survey of user authentication based on mouse dynamics. In Global E-Security. Springer , 210--219. Kenneth Revett, Hamid Jahankhani, S\u00e9rgio Tenreiro de Magalh\u00e3es, and Henrique M. D. Santos. 2008. A survey of user authentication based on mouse dynamics. In Global E-Security. Springer, 210--219."},{"key":"e_1_2_1_44_1","unstructured":"Frank Rieger. 2013. Chaos Computer Club Breaks Apple TouchID. Retrieved from http:\/\/www.ccc.de\/en\/ updates\/2013\/ccc-breaks-apple-touchid\/.  Frank Rieger. 2013. Chaos Computer Club Breaks Apple TouchID. Retrieved from http:\/\/www.ccc.de\/en\/ updates\/2013\/ccc-breaks-apple-touchid\/."},{"key":"e_1_2_1_45_1","doi-asserted-by":"publisher","DOI":"10.1145\/1743666.1743685"},{"key":"e_1_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516659"},{"key":"e_1_2_1_47_1","volume-title":"A survey of biometric keystroke dynamics: Approaches, security and challenges. Arxiv Preprint Arxiv:0910.0817","author":"Shanmugapriya D.","year":"2009","unstructured":"D. Shanmugapriya and Ganapathi Padmavathi . 2009. A survey of biometric keystroke dynamics: Approaches, security and challenges. Arxiv Preprint Arxiv:0910.0817 ( 2009 ). D. Shanmugapriya and Ganapathi Padmavathi. 2009. A survey of biometric keystroke dynamics: Approaches, security and challenges. Arxiv Preprint Arxiv:0910.0817 (2009)."},{"key":"e_1_2_1_48_1","doi-asserted-by":"publisher","DOI":"10.1080\/00140139008927110"},{"key":"e_1_2_1_49_1","volume-title":"The 20th Annual Network & Distributed System Security Symposium (NDSS&rsquo;\u201913)","author":"Tey Chee Meng","year":"2013","unstructured":"Chee Meng Tey , Payas Gupta , and Debin Gao . 2013 . I can be You: Questioning the use of keystroke dynamics as biometrics . In The 20th Annual Network & Distributed System Security Symposium (NDSS&rsquo;\u201913) . Chee Meng Tey, Payas Gupta, and Debin Gao. 2013. I can be You: Questioning the use of keystroke dynamics as biometrics. In The 20th Annual Network & Distributed System Security Symposium (NDSS&rsquo;\u201913)."},{"key":"e_1_2_1_50_1","doi-asserted-by":"publisher","DOI":"10.1016\/0262-8856(96)01091-8"},{"key":"e_1_2_1_51_1","doi-asserted-by":"publisher","DOI":"10.5555\/2880333.2880334"}],"container-title":["ACM Transactions on Privacy and Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2904018","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2904018","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T04:54:33Z","timestamp":1750222473000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2904018"}},"subtitle":["Exposing Insider Threats Using Eye Movement Biometrics"],"short-title":[],"issued":{"date-parts":[[2016,6,16]]},"references-count":50,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2016,8,5]]}},"alternative-id":["10.1145\/2904018"],"URL":"https:\/\/doi.org\/10.1145\/2904018","relation":{},"ISSN":["2471-2566","2471-2574"],"issn-type":[{"value":"2471-2566","type":"print"},{"value":"2471-2574","type":"electronic"}],"subject":[],"published":{"date-parts":[[2016,6,16]]}}}