A Continuous Authentication Framework for Securing Metaverse Identities

IF 5.8 2区计算机科学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

IEEE Transactions on Services Computing Pub Date : 2025-03-21 DOI:10.1109/TSC.2025.3553711

Sangsoo Han;Eunbi Hwang;YoonSik Kim;Taekyoung Kwon

{"title":"A Continuous Authentication Framework for Securing Metaverse Identities","authors":"Sangsoo Han;Eunbi Hwang;YoonSik Kim;Taekyoung Kwon","doi":"10.1109/TSC.2025.3553711","DOIUrl":null,"url":null,"abstract":"In the Metaverse, continuous authentication is essential for verifying the ongoing connection between a user’s physical identity and avatar, ensuring secure access to various services. This process is crucial for confirming identities, maintaining security, and preventing unauthorized activities that could compromise legitimate services. However, traditional biometric-based authentication methods are susceptible to threats such as impersonation, replay attacks, and disguise, primarily due to the difficulty in directly using biometric information to represent the connection between virtual and physical identities. To address these challenges, some studies have proposed using blockchain schemes to mitigate security threats. Despite this, these approaches often encounter issues like insufficient network protection for authentication connections, prolonged data processing times, and latency. To overcome these limitations, we propose a secure continuous authentication framework that leverages standard protocols such as QUIC and JWT to verify user identities efficiently. Our approach employs embedding models on edge devices to generate and transmit biometric data. In contrast, a deep learning-based model on the server validates the user’s credentials, ensuring both high performance and availability. Experimental results show that our QUIC and JWT-based protocol delivers superior security and effectiveness compared to traditional biometric approaches and blockchain-based methods, achieving an AUC of 0.97, an EER of 3.77, and an F1 score of 0.96.","PeriodicalId":13255,"journal":{"name":"IEEE Transactions on Services Computing","volume":"18 3","pages":"1171-1184"},"PeriodicalIF":5.8000,"publicationDate":"2025-03-21","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Transactions on Services Computing","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10937044/","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

In the Metaverse, continuous authentication is essential for verifying the ongoing connection between a user’s physical identity and avatar, ensuring secure access to various services. This process is crucial for confirming identities, maintaining security, and preventing unauthorized activities that could compromise legitimate services. However, traditional biometric-based authentication methods are susceptible to threats such as impersonation, replay attacks, and disguise, primarily due to the difficulty in directly using biometric information to represent the connection between virtual and physical identities. To address these challenges, some studies have proposed using blockchain schemes to mitigate security threats. Despite this, these approaches often encounter issues like insufficient network protection for authentication connections, prolonged data processing times, and latency. To overcome these limitations, we propose a secure continuous authentication framework that leverages standard protocols such as QUIC and JWT to verify user identities efficiently. Our approach employs embedding models on edge devices to generate and transmit biometric data. In contrast, a deep learning-based model on the server validates the user’s credentials, ensuring both high performance and availability. Experimental results show that our QUIC and JWT-based protocol delivers superior security and effectiveness compared to traditional biometric approaches and blockchain-based methods, achieving an AUC of 0.97, an EER of 3.77, and an F1 score of 0.96.

查看原文本刊更多论文

用于保护元空间身份的连续身份验证框架

在Metaverse中，连续身份验证对于验证用户的物理身份和虚拟形象之间的持续连接至关重要，从而确保对各种服务的安全访问。此过程对于确认身份、维护安全性和防止可能危及合法服务的未经授权的活动至关重要。然而，传统的基于生物特征的身份验证方法容易受到冒充、重放攻击和伪装等威胁，这主要是因为难以直接使用生物特征信息来表示虚拟身份和物理身份之间的联系。为了应对这些挑战，一些研究建议使用区块链方案来减轻安全威胁。尽管如此，这些方法经常遇到诸如身份验证连接的网络保护不足、数据处理时间延长和延迟等问题。为了克服这些限制，我们提出了一个安全的连续身份验证框架，该框架利用QUIC和JWT等标准协议有效地验证用户身份。我们的方法在边缘设备上嵌入模型来生成和传输生物识别数据。相比之下，服务器上基于深度学习的模型验证用户的凭据，确保高性能和可用性。实验结果表明，与传统生物识别方法和基于区块链的方法相比，基于QUIC和jwt的协议具有更高的安全性和有效性，AUC为0.97，EER为3.77，F1得分为0.96。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IEEE Transactions on Services Computing COMPUTER SCIENCE, INFORMATION SYSTEMS-COMPUTER SCIENCE, SOFTWARE ENGINEERING

CiteScore

11.50

自引率

6.20%

发文量

278

审稿时长

>12 weeks

期刊介绍： IEEE Transactions on Services Computing encompasses the computing and software aspects of the science and technology of services innovation research and development. It places emphasis on algorithmic, mathematical, statistical, and computational methods central to services computing. Topics covered include Service Oriented Architecture, Web Services, Business Process Integration, Solution Performance Management, and Services Operations and Management. The transactions address mathematical foundations, security, privacy, agreement, contract, discovery, negotiation, collaboration, and quality of service for web services. It also covers areas like composite web service creation, business and scientific applications, standards, utility models, business process modeling, integration, collaboration, and more in the realm of Services Computing.