Behavioral Biometrics
What is Behavioral Biometrics?
Behavioral BiometricsA continuous-authentication technique that profiles unique user behaviors — typing rhythm, mouse movements, gait, or touchscreen gestures — to detect impostors.
Behavioral biometrics measure how a person interacts with a device rather than what they look like. Models analyse keystroke dynamics, mouse trajectories, scrolling, swipe pressure, gait from mobile sensors, or even how a phone is held, and compare them to a behavioral baseline. The technique runs silently and continuously after login, so it can detect session hijacking, bot activity, or account takeover even when valid credentials are presented. It is widely used in fraud prevention for banking and e-commerce, often paired with risk-based authentication. Limitations include false positives from injury or stress, and privacy concerns around persistent monitoring.
● Examples
- 01
A bank flags a session where typing cadence suddenly differs from the customer's baseline.
- 02
An e-commerce platform detects bot-driven account creation via inhuman mouse paths.
● Frequently asked questions
What is Behavioral Biometrics?
A continuous-authentication technique that profiles unique user behaviors — typing rhythm, mouse movements, gait, or touchscreen gestures — to detect impostors. It belongs to the Identity & Access category of cybersecurity.
What does Behavioral Biometrics mean?
A continuous-authentication technique that profiles unique user behaviors — typing rhythm, mouse movements, gait, or touchscreen gestures — to detect impostors.
How do you defend against Behavioral Biometrics?
Defences for Behavioral Biometrics typically combine technical controls and operational practices, as detailed in the full definition above.
What are other names for Behavioral Biometrics?
Common alternative names include: Behavioral biometric authentication, Continuous biometrics.