As many vulnerabilities of one-time authentication systems have already been uncovered,
there is a growing need and trend to adopt continuous authentication systems. Biometrics
provides an excellent means for periodic verification of the authenticated users without
breaking the continuity of a session. Nevertheless, as attacks to computing systems
increase, biometric systems demand more user information in their operations, yielding
privacy issues for users in biometric-based continuous authentication systems. However, the …

Efforts to improve the security of the authentication services have historically progressed
from what-you-know (ie, passwords) to what-you-have (ie, tokens), then to what-you-are (ie,
biometrics) as attacks have increased in sophistication and become widespread [80, 85].
While the deployment of biometric authentication systems increases the usability of the
authentication systems, the plethora of cyber-attacks demands more user information from
biometrics, which introduces additional security and privacy challenges in the authentication …