Slashdot Mirror

← Back to Stories (view on slashdot.org)

Sign Your Name Online With A Mouse

Posted by simoniker on from the signing-mickey-mouse-frowned-upon dept.

icke writes "Soon, the way you use your mouse could help prove who you are. According to a BBC News article, scientists have found a way for people to sign their name online using a mouse instead of a pen. The technology, based on the research from Queen Mary College, University of London by Peter McOwan, 'uses a neural network to pick out the unique features of the way that someone uses a mouse.'"

29 of 236 comments (clear)

  1. How hard do you have to squeeze by egg+troll · · Score: 4, Funny

    To get ink from a mouse? Yeesh.

    --

    C - A language that combines the speed of assembly with the ease of use of assembly.
    1. Re:How hard do you have to squeeze by EmbeddedJanitor · · Score: 4, Funny

      I tried and the fscking thing bit me!

      --
      Engineering is the art of compromise.
  2. This would be easy to fake by Megor1 · · Score: 5, Insightful

    You could just record the mouse movements with some macro software and then play it back whenever it asks for their signature.

    --
    Everyone that disagrees with me is a paid shill
    1. Re:This would be easy to fake by swtaarrs · · Score: 4, Interesting

      If the software is smart, it will look for perfect reproductions which no human would be capable of and give an error if it detects one.

    2. Re:This would be easy to fake by krymsin01 · · Score: 4, Insightful

      Well, I suppose it'd be trivial to check an see if one of the last couple hundred times you signed your name is am exact match (something I think only a macro, and not a human, could do), and if so, reject it.

      --
      stuff
    3. Re:This would be easy to fake by Andrewkov · · Score: 5, Informative

      If you've ever tried drawing anything with a mouse, you probably agree that it's not easy .. I probably couldn't even write my name and have it be recognizable as being written by the same person, let alone be an exact digital match. Maybe I'm a spaz on the mouse, but I know for a fact I'm *much* better than the average Joe-Sixpack type I see at work. So I have a hard time believing this concept will work. Stylus tablets is another story, though.. If only everyone owned one of those! :-)

    4. Re:This would be easy to fake by localghost · · Score: 5, Funny

      And pens won't work either, because you can easily photocopy a signature and trace over it. Oh well, back to the drawing board...

    5. Re:This would be easy to fake by G4from128k · · Score: 4, Insightful

      Obviously if someonce can log the mouse motions with an accurate timestamp, then they can replicate the signature. But then EVERY computer-connected biometric ID system is potentially susceptable to interception/replay of the biometric key signal.

      In the case of this system, an arms race between the forger/loggers and the ID systems company would then ensue. The first countermeasure to mouse-loggers would be rejection of identical traces (as others have suggested). To this forgers would add statistical noise to the trace. The ID company would then need to create a more sophisticated statistical test that rejects traces that did not vary enough while staying within the statistical bounds of the 20 training samples that the systems asks for. An SVD on some transform of the sample signatures would help uncover both the strongest and weakest modes of variation. Signatures that did not match on the main pattern and did not vary sufficiently in expected way would be rejected. This would prevent either direct play-back or a simplistic addition of noise to the mouse trace.

      The presence of both a predicable static pattern (the "average" signature) and modes of variation (because people don't actually sign their name identically to the nanometer/nanosecond) makes this biometric key better than other more invariant biometric features that can be copied.

      --
      Two wrongs don't make a right, but three lefts do.
    6. Re:This would be easy to fake by s88 · · Score: 4, Insightful

      " If the software is smart, it will look for perfect reproductions which no human would be capable of and give an error if it detects one."

      Why do you not assume that the macro software could be "smart" and simply add some white noise to the playback?

    7. Re:This would be easy to fake by jackb_guppy · · Score: 4, Insightful

      Which then leads:

      Why do people sign electronic pads at stores when they use credit cards?

      You have just placed your last protection of who you are in a computer system that you have no control over.

      Real dumb.

    8. Re:This would be easy to fake by E_elven · · Score: 4, Funny

      Because we all know that *actual* signatures cannot be forged and the clerks at stores are really hawk-eyed when it comes to making sure the customer is who they say they are.

      --
      Marxist evolution is just N generations away!
  3. Question by AnimeFreak · · Score: 4, Insightful

    Would a signature created with a mouse be legally-binding?

    1. Re:Question by chill · · Score: 4, Interesting

      Would a signature created with a mouse be legally-binding?

      Many of laws now on the books in the U.S. allow a digitial signature to be binding if all parties agree on the digital method used.

      So, if you can all agree on wiggling the mouse for a sig, then it can be legally binding.

      --
      Learning HOW to think is more important than learning WHAT to think.
  4. Warning: by Exiler · · Score: 5, Funny

    Vertical motions detected. Credit authorization failed.

    Thank you for shopping at Victoria Secret.

    --
    Banaaaana!
  5. Your John Handcock is not secure by Dancin_Santa · · Score: 5, Insightful

    While it may be a huge flourish that impresses the ladies, your signature is not as secure as it would seem. Forgeries are easy to make by skilled criminals.

    Use a cryptographic key to sign. You'll be glad you did.

    1. Re:Your John Handcock is not secure by OmnipotentEntity · · Score: 5, Insightful

      The added fact that most skilled forgeries are identified by the depth of the pit in the paper (ie how hard you press down at certain points, you can imitate a shape but if you imitate it you're not doing it naturally and that shows in the patterns of heavy vs. light inking), and not by the shape of the writing, that makes the mouse signature doubly insecure. Any idiot can trace a pattern of pixels if they see it a few times.

      ___________

      --
      "Build a man a fire warm him for a day, set a man on fire and warm him for the rest of his life."
  6. ... even easier with a pen mouse. by OzPixel · · Score: 4, Insightful

    My girlfriend had a pen-shaped mouse for a while, (wrist problems), and I'd imagine signing would be much more "natural" with one of those. Neat idea, though ...

    David.

  7. Great by Crashmarik · · Score: 5, Funny

    Just what I need. Computers to tell me I'm not me when I sign my name. At least with people I could make a convincing argument.

  8. Types of mouse by Cavalkaf · · Score: 4, Interesting

    What about if you change your mouse type to something like a trackball or a laptop mouse? Your signature wouldn't work anymore, and you cannot access anything from other computer!!!

  9. right.... by hawkbug · · Score: 4, Insightful

    Because I always use a mouse the same way, this will work great.... Not. I have many different computers, all with different types of mice and software. Trackballs, eraser-head laptops, trackpad laptops, and don't even get me started about different operating systems and the software they use. This is not going to work for many reasons, and I hope business realize this sooner than later.

  10. Another odd idea that'll never work by Rosco+P.+Coltrane · · Score: 4, Insightful

    "It's another way of indicating that you as an individual are sitting there on the end of the line."

    Easy to fake with a mouse movement recorder.

    Oh and what about people who use a trackball? does the smart biometric layer apply to those hand movements?

    And the other obvious question : wouldn't it be easier to simply teach people why they should use properly formed passwords that are not "mom", "dad", "john1" or "s00persekrit"?

    In short, yet another far-fetched solution to solve a non-problem.

    --
    "A door is what a dog is perpetually on the wrong side of" - Ogden Nash
  11. Similar biometrics don't work by thepacketmaster · · Score: 5, Insightful

    After recently studying for the CISSP, I learned a great deal about biometrics. The most accurate biometrics include things like iris scans, palm scans, retina scans, etc. These are so accurate because they measure characteristics that are totally unique to individuals. Signature dynamics and keystroke dynamics are some of the most ineffective biometrics around. A big problem is they can be faked. While the article states that early trials are 99% accurate, it doesn't detail how many people have actually tried this system. (A test group of 10 wouldn't be very good.) It also doesn't mention if they tried to fake it out. The real world is a harsh place on biometrics.

    --

    --

    Luck is just skill you didn't know you had.

  12. dudes, they're lying by bongobongo · · Score: 5, Funny

    it's just ms paint with a web front end and a bunch of offshore labourers visually verifying each one !!!! ! !!

    it's 99% accurate because of carelessness and post-lunchbreak bloat factor

  13. Is this like Cybersign? by G4from128k · · Score: 4, Interesting

    This looks like a variation on what the folks at Cybersign do. Their technology is based on matching the dynamical pattern of motion, not just the X-Y coordinate trace. A forger would have a hard time copying the variations in speed that the actual person uses even if the forger traces the same path or tries to "get good" at the signature.

    --
    Two wrongs don't make a right, but three lefts do.
  14. Now I'm Confused by the_mad_poster · · Score: 5, Funny

    Christ... first thing I did when I read that was stop moving my mouse.. then the thought crossed my mind that by doing that, I was just setting up a new signature, so I started moving the mouse. Then, I started to think that maybe I was moving the mouse in my own special way, so I tried to make something up.

    Then it occurred to me that I'm using lynx.

    --
    Alito: A vote for Alito is a punch in the eye to put that bitch back in her place!
  15. I've done something like this by n0nsensical · · Score: 5, Interesting

    When I bought a ticket online from GrooveTickets, I had to sign this Flash applet, although I'm not sure how that alone is going to prevent theft because if someone was trying to use a stolen credit card, I'm sure they wouldn't have much trouble forging a signature on a Flash form with a reset button.

  16. John Handcock by shigelojoe · · Score: 5, Funny

    He was probably talking about the pornstar. And if there isn't a pornstar named John Handcock, there damn well needs to be one.

    A lack of John Handcock is un-American(TM), dammit.

  17. This is similar to Morse Code by sQuEeDeN · · Score: 5, Interesting

    One of the legends of the early radio intelligence (and other classified military radio work) was that each coder (morse that is) had a very specific tapping style that was discernible by a trained professional. Such uniqueness was noticable even if the coder switched hands.

    While this uniqueness didn't provide a surefire form of authentication, professionals who feared having a broadcast recognized would sometimes retire a coder after sending a particularly sensitive message.
    Seems kinda like mouse analasys. You can't prove it's them, but it's another suggestion. Can't see how it'll be useful. The mouse is easy enough to hook into in the software side--it's by no means a secure device.

    --

    Recursive (adj.): see 'Recursive'
  18. Re:That's the point though.. by whereiswaldo · · Score: 4, Insightful

    Interesting, but there's a big problem with using a mouse to write a signature: moving from machine to machine. The ergonomics are totally different between machines, for one thing. Plus, different brands of mouse. What about mice with the thumb-rollerball? Or notebook touchpads? Or optical mice vs. crappy old mice with crud stuck in the rollers?