[raresp]

Thanks for your questions.

Regarding: "However, this is claiming to authenticate me as an individual. But what if my writing improves? What if I have a mechanical keyboard at work but a rinky-dink iPad case soft keyboard at home?"

You will have to create separate typing signatures in order to cover both desktop and mobile apps, because mobile typing is totally different than the computer's keybord typing. Typing AI is able to identify your device and is able to learn from previous detections.

One of our advantages against the competition is that we're using a machine learning algorithm and the platform learns from previous detections. Thus it will be able to identify you even if you're using a smartphone, a tablet or a desktop computer.

Regarding the 99.9% detection accuracy score, I can confirm that in 2021, Typing AI Biometrics made over 300 000 user identity checks from over 30 000 unique users. When mentioning this score we used our yearly analytics, where 1 in 1000 identity checks was a false positive keystrokes detection.

[xaedes]

Do I read that right? 1 in 1000 are false positives? Does that mean 1 in 1000 users can log in as another by chance?

That is no authentication scheme then.

[raresp]

Very good question.

Simple answer - No, you won't be able to login as another by chance. You understood it wrong. If 1000 users try to login as you, the results of our statistics show that one of them may be able to do it.

But if you combine typing biometrics with other authentication factors, using it as a two factor authentication (2FA) or as a multi factor authentication (MFA) solution, this scenario won't exist at all.

So yes, typing biometrics is a very strong and efficient authentication method.

[xaedes]

> If 1000 users try to login as you, the results of our statistics show that one of them may be able to do it.

So each user effectively gets assigned one of ~1000 ids, which is not that different to a three digit decimal PIN, that they then can use as password?

It seems to use it as an authentication scheme a username and 2FA/MFA is _mandatory_. I guess one could then also say: a username is a very strong and efficient authentication method.

[raresp]

I like the fact that you are playing with my words.

I didn't said that we have 1000 id's or that we are limited when creating the typing signatures. I said that we have a 99.9% detection accuracy score.

Each signature translates into a unique and encrypted hash with a length of over 300 characters. Compare that with an 8 characters unencrypted password, or with a 64 characters encrypted password and you'll be able to decide for yourself which security is better and more efficient.

Thanks for your interest in Typing AI.