University of Hamburg - to research, to teach, to educate and form, to homepage
Computer Networks

Photo: UHH/Denstorf

Paper accepted at IFIP SEC'24

16 May 2024, by Mathias Fischer

IFIP SEC

Photo: https://ifipsec2024.co.uk/

Our paper, ”Detecting Web Bots via Keystroke Dynamics” was accepted for publication at the Security and Privacy Protection in Information Processing Systems conference (IFIP SEC 2024).

The paper addresses the escalating issue of sophisticated malicious web bots, proposing a novel detection method using keystroke dynamics modeled by state-of-the-art diffusion models, demonstrating improved performance in classifiers and feasibility in bot detection based solely on keystroke timings.

Paper Abstract:
The increasing presence of malicious web bots within the digital ecosystem has not only escalated operational costs for web services but also significantly deteriorated user satisfaction, especially in sectors like online gaming and social media. These bots engage in a range of unauthorized activities, contributing to a complex threat landscape. The situation is further complicated by rapid advancements in AI, which not only increase the demand for data, often sourced through unauthorized web scraping by bots, but also blur the lines between human and computer interactions. Enhanced image recognition capabilities allow AI to effectively bypass CAPTCHA systems, and the deployment of large language models provides sophisticated reasoning abilities. In response, this paper introduces an approach to mitigate these challenges by leveraging keystroke dynamics as a means for bot detection. Classifiers that differentiate between humans and bots based on keystroke patterns necessitate the use of synthetically generated keystroke data for training purposes. Such data is typically generated using generative AI models; however, it often lacks contextual accuracy, leading to easily distinguishable keystrokes and consequently affecting the classifiers' efficacy. To address this issue, our method models keystroke dynamics in a key-dependent fashion, employing a state-of-the-art diffusion model to produce data of superior quality. We further illustrate that classifiers, particularly those based on Transformer and LSTM architectures, exhibit enhanced performance when retrained with this refined data. We furthermore assess the feasibility of bot detection by exclusively analyzing keystroke timings without including key identity, which we find feasible with only a marginal performance decrease.

Latest articles

ACM SAC 2025 in Italy, Catania

Photo: https://www.sigapp.org/sac/sac2025/

11.12.2024|NET
Double tap at SAC'25

Double tap at the 40th ACM/SIGAPP Symposium On Applied Computing (SAC 2025)! We congratulate Heiko and Kevin for their listed works accepted to the conference:

"A Software-Defined Overlay Networking Middleware for a Simplified Deployment of Distributed Application at the Edge" "Unlinkable Data...
IEEE CNS 2024

Photo: https://cns2024.ieee-cns.org/

20.08.2024|NET
Paper accepted at IEEE CNS 2024

We are happy to announce that our paper, "Privacy-preserving Network Anomaly Detection on Homomorphically Encrypted Data", has been accepted for publication at the twelfth annual IEEE Conference on Communications and Network Security (IEEE CNS) 2024.

The paper addresses the issue of...