Session management in distributed Internet services is traditionally based on username and password, explicit logouts and mechanisms of user session expiration using classic timeouts. Emerging biometric solutions allow substituting username and password with biometric data during session establishment, but in such an approach still a single verification is deemed sufficient, and the identity of a user is considered immutable during the entire session. Additionally, the length of the session timeout may impact on the usability of the service and consequent client satisfaction.
This paper explores promising alternatives offered by applying biometrics in the management of sessions. A secure protocol is defined for perpetual authentication through continuous user verification. The protocol determines adaptive timeouts based on the quality, frequency and type of biometric data transparently acquired from the user. The functional behavior of the protocol is illustrated through Matlab simulations, while model-based quantitative analysis is carried out to assess the ability of the protocol to contrast security attacks exercised by different kinds of attackers. Finally, the current prototype for PCs and Android smartphones is discussed.
Website development is not only about design and coding. In 2026, successful business websites are built through careful planning before…
A business website is one of the strongest tools for building brand identity in 2026. Customers often interact with a…
In 2026, a business website often becomes the first interaction customers have with a company. Before contacting a business, booking…
Local businesses rely heavily on customer trust and visibility within their surrounding area. In 2026, customers often search online before…
Website accessibility has become one of the most important parts of modern web design in 2026. Businesses are realizing that…
In 2026, website users expect online experiences to feel fast, simple, and easy to understand. Businesses often believe adding more…