IT202100016136A1 - User identification method during access via computer, and related system - Google Patents

Description

USER IDENTIFICATION METHOD DURING ACCESS VIA

COMPUTER, AND RELATED SYSTEM

The present invention relates to a computer-implemented method of user identification during computer accesses, for example accesses to programs executed by computers and accesses to online platforms, such as writing platforms, including collaborative writing platforms, which allows, in a reliable way, effective, fast, efficient, economical and simple to use for users, to identify a user who accesses a program and/or an online platform via computer.

The present invention also relates a user identification system configured to perform that method and a computer program configured to perform that method.

In the continuation of the present description and in the claims, a method implemented by computer means a method that can be performed by any device equipped with one or more unit? computing devices, such as tablets, laptops, personal computers (PCs), and servers, featuring a screen, keyboard, and hand-operated pointing device, such as a mouse, tablet, trackball, touch pad, touch screen , a trackpoint.

AND? known that the security in user access to programs and platforms ? extremely relevant. In particular, the identification of users who access programs executed by computers and online platforms? essential to validate the?identity? of an identifiable subject, or already? present in the set of identifiable subjects. Acting in this modality?, in fact, ? It is possible to limit the recognition of the user to a binary result. In other words, ? It is necessary to validate whether or not the user can be identified with the profile through which he is logging in.

Some prior art user identification systems and methods, such as those disclosed in US 2008/0098456 A1 , US 2017/0078257 A1 and WO 2014/205148 A1 , are based on the methods of user interaction with keyboard or mouse.

However, such prior art user identification systems and methods suffer from some drawbacks, substantially due to their complexity. which leads them to collect large quantities? of data that must be analyzed through particularly sophisticated algorithms that may require different applications to, respectively, collect data and identify users.

The purpose of the present invention, therefore, is that of allowing users to identify a user who accesses a program and/or an online platform via computer in a reliable, effective, fast, efficient, economic and simple way to use.

The specific object of the present invention is a method implemented by computer for identifying a user during access via a computer, provided with a screen, keyboard and pointing device, comprising the following steps:

A. receive a user's username and password, verify their correctness and continue with the subsequent phases only if both the username and password entered by the user are correct;

B. display on the computer screen an access page which requires the user to type on the keyboard at least one keyword taken from a database;

C. check if the keyword entered by the user matches the requested keyword or not;

D. if the keyword entered in phase C does not correspond to the requested keyword, go back to performing phase B, otherwise carry out the subsequent phase E;

E. extracting interkey times relating to a typing by the user of the keyword entered in phase B on the keyboard;

F. compare the interkey times extracted in phase E with the reference interkey times stored in the database for the user associated with the username and password entered in phase A;

G. if the interkey times extracted in phase E do not correspond to the reference interkey times stored in the database for the user associated with the username and password entered in phase A, go back to carrying out phase B, otherwise carry out the subsequent phase H;

H. display on the computer screen an interface that requires the user to perform interactions with the pointing device, in which said interactions are selected from a first combination of interactions comprising one or more? cursor movements and one or more? clicks on areas of the interface and a second combination of interactions including one or more? cursor movements and clicks on one or more? virtual keys corresponding to respective answers to one or more? questions presented on the interface;

J. extract dynamics of the pointing device and additional parameters of interaction with the pointing device consisting, in the case in which in phase H said interactions consist of the first combination of interactions, in interclick times relative to said interactions or, in the case in which in phase H said interactions consist of the second combination of interactions, in responses selected by the user by clicking on said one or more? virtual keys; K. compare said dynamics and said additional interaction parameters with the pointing device extracted in phase J with reference dynamics and additional reference parameters for interaction with the pointing device stored in the database for the user associated with the entered username and password in phase A;

L. in the event that said dynamics and said additional interaction parameters with the pointing device extracted in step J correspond respectively with the reference dynamics and additional reference parameters for interaction with the pointing device stored in the database for the user associated with the username and password entered in phase A, perform the subsequent phase M, otherwise go back to phase H; M. allow the user to access a program run by the computer or an online platform;

N. transmitting the interkey times extracted in step E and said dynamics and said additional interaction parameters with the pointing device extracted in step J to the database for its updating.

According to another aspect of the invention, in the case in which in phase H said interactions consist of the first combination of interactions, the method implemented by computer can be performed using a neural network.

According to a further aspect of the invention, in the case in which in phase H said interactions consist of the second combination of interactions, the method implemented by computer can be performed using a classifier based on Pattern Recognition and Machine Learning techniques.

According to an additional aspect of the invention:

- in phase E can they also be extracted? hold times relating to typing by the user of the keyword entered in phase B on the keyboard;

- in phase F can they also be? compared the hold times extracted in phase E with the reference hold times stored in the database for the user associated with the username and password entered in phase A;

- in phase G, in the event that said interkey times and said hold times extracted in phase E correspond respectively to the reference interkey times and the reference hold times stored in the database for the user associated with the username and password entered in phase A, you can? run the next phase H, otherwise you can? go back to carrying out phase B; - in the N phase, can you? transmit otherwise? the hold times extracted in phase E to the database for its update.

According to another aspect of the invention, the method implemented by computer can be performed using a neural network.

According to a further aspect of the invention, the return to the H phase from the L phase can be repeatable up to a first maximum number of times.

According to an additional aspect of the invention, upon reaching said first maximum number of repetitions returning to phase H from phase L, the user can? be denied access to said computer program or online platform, or the user can? be granted access to said computer program or online platform after providing a higher-level password, or the user can? be granted limited access to said computer program or online platform, or can the user? be granted access and a report is sent to an administrator user.

According to another aspect of the invention, the return to phase B from phase D and/or from phase G can be repeatable up to a second maximum number of times.

According to a further aspect of the invention, the pointing device can be a mouse.

Another specific object of the present invention is a user identification system comprising one or more? unit? processing, at least one screen, at least one keyboard, at least one pointing device and at least one database, in which one or more unit? processors are configured to perform the computer-implemented method of identifying a user during computer logins described above.

form also? specific object of the present invention is a set of one or more? computer programs comprising instructions which, when executed by one or more unit? of processing of an identification system provided with at least one screen, at least one keyboard, at least one pointing device and at least one database, cause said one or more? unit? processor to perform the computer-implemented method of identifying a user during logins via a computer described above.

A further specific object of the present invention is a set of one or more? memory supports readable by a processor that has stored on it the set of one or more? computer programs just described.

The advantages offered by the invention are numerous and significant, given that the invention allows, in a reliable, effective, fast, efficient, economic and easy way for users to use, to identify a user accessing a program via computer and/ or to an online platform.

This invention will come now described, by way of illustration and not by way of limitation, according to preferred embodiments thereof, with particular reference to the drawings in the attached Figures, in which:

Figure 1 schematically shows a flowchart of a first embodiment of the computer-implemented method of user identification during computer logins according to the invention;

Figure 2 schematically shows a flowchart of a second embodiment of the computer-implemented method of user identification during computer logins according to the invention; And

Figure 3 schematically shows a flowchart of a third embodiment of the computer-implemented method of user identification during computer logins according to the invention.

The computer-implemented method of user identification during computer logins according to the invention is performed after a user has successfully performed a conventional login to a computer-executed program or online platform. In particular, ? the profiling and memorization of each individual user authorized to access the program executed by computer or the online platform is necessary. There? takes place through the association to the name of the user (User ID) of a set of pre-established metrics that are collected based on keyboard and mouse actions during specific tasks that the user? required to perform, for example during access (although these metrics can also be collected at times other than access). The metrics and actions for a certain user are then updated for each session with valid access, so as to increase the number to build a more accurate identification logic. sturdy.

Storing the data collected in this way ? localized and accessible for any identification request. The structuring of the database ? advantageously conforms to the properties? of the specific application of use, and is illustrated below in a general way. To lighten the model and databases, the data can be compressed into fundamental metrics, through specific techniques of data projection into linear and non-linear subspaces, such as for example the analysis of the principal components (PCA: Principal Component Analysis), l? independent component analysis (ICA: Independent Component Analysis), and singular value decomposition (SVD: Singular Value Decomposition).

For purposes of effective identification, the computer-implemented method of user identification during computer accesses according to the invention collects targeted data which are semantically relevant to the unique profiling of each individual user. In this regard, data collection is based on the recording of raw data from the particular use that each user makes of the keyboard and pointing device.

In this regard, in the following will come? reference has been made to the mouse as a pointing device, but it must be kept in mind that the method implemented by means of a computer for user identification during accesses by means of a computer according to the invention can? rely on the use of other pointing devices, such as a tablet, trackball, touch pad, touch screen, or trackpoint.

In particular, the method implemented by computer for user identification during access by computer according to the invention calculates and stores at least one of the following two families of parameters for interaction of a user with a keyboard:

- interkey times, i.e. the measurements of the period of time between the pressing of one key and the next, e

- hold times, i.e. the measure of the pressing time of a key and the measure of its release time.

Furthermore, the computer-implemented method of user identification during computer access according to the invention calculates and stores at least one of the following two families of user interaction parameters with a mouse:

- dynamics, i.e. measures the spatial and temporal intervals of mouse movements, e

- interclick times, i.e. the measurements of the typing time of the mouse keys (in particular the left key, the right key, and the central wheel) and the respective release times.

The data relating to these families of interaction parameters of a user with a keyboard and a mouse can logically be linked to the individual natural persons who use the keyboard and the mouse, respectively.

The method implemented via computer for user identification during access via computer according to the invention guides the user through a series of steps which allow the collection of the metrics necessary for an effective and reduced identification over time, allowing at the same time to obtain a high quality ? of the service given that the user is kept as little as possible in the identification procedure. In particular, the user is asked to interact with the keyboard and the mouse to fill appropriate text boxes with predefined words and phrases and click on random points on the screen.

In the event that the user makes a first access (i.e. a registration to a program executed by computer or to an online platform), the number of actions proposed to the user must be suitable for the application, increasing as much as possible. possible number, according to the application. The specifics of the construction of the profile depend on the vertical scope of application, defining the consistency of the relative quantities? metrics in such a way that an identification can be made without further data collection.

Three embodiments of the computer-implemented method of user identification during computer accesses according to the invention are illustrated below, in which the families of parameters for interacting with a user with a keyboard and with a mouse described above are used in synergy as an additional verification method to the conventional login approach based on entering a user name (also referred to as username or user-id) and password to ensure access only to authorized users.

The computer-implemented method of identifying users during computer logins can be incorporated into a computer security process. In this case, for each user (authorized to access a program run on a computer or an online platform) the necessary data is collected during the login phase. The latter are acquired through the use of a data entry form of the method implemented by computer for user identification during accesses by computer according to the invention and are stored in a suitable database accessible and managed by an administrator user.

The acquisition of data relating to the families of interaction parameters of a user with a keyboard and a mouse can take place via software tools (or hardware, if necessary). In particular, as regards the two families of user interaction parameters with a keyboard, i.e. interkey times and hold times, the method implemented by computer for user identification during accesses by computer according to the invention advantageously uses a routine which uses the internal timer of the computer provided with the keyboard, in which the interkey times and hold times are measured by the duration of the interrupts.

In general, the administrator user who keeps the data of each user also generates? the training dataset, where training can? be run offline or as a background process to avoid lengthening the service time. The extraction of features from the collected data can be done manually or automatically through the use of artificial neural networks. The association of the collected data to the user can be carried out in a supervised way, in order to be sure that a specific user uses a specific machine during the data collection phase. The profiling of each user (which is not necessarily unique, but uniquely recallable) can? take place through the use of Machine Learning classifiers or through the use of artificial neural networks specialized in classification tasks; generally, the latter are able to obtain performances very close to, if not equal to, the optimum (100% accuracy).

With reference to Figure 1, you can? note that a first embodiment of the method implemented by computer for user identification during computer access according to the invention comprises a first step 100 in which the user to be identified (i.e. the user requesting access to a program or to an online platform) a login page is presented on the computer screen in which the user must complete the username and password fields. If at least one of the two fields is not filled in correctly, the second verification phase 105 denies the user access and goes back to executing the first phase 100. Optionally, ? It is possible to set a (limited) number of attempts (i.e. repetitions of the first phase 100). This procedure ? identical to the conventional technique of accessing a PC. Once the fields are filled in correctly, proceed to the next check.

In the third phase 110, the user is presented on the computer screen with a specific access page where he is asked to type on the keyboard (at least) a keyword 510, of variable length, which the method fetches from the database 500 which collects the data necessary for carrying out the method according to the invention.

In the fourth phase 115, the method checks if the keyword entered by the user ? correct or not, i.e. it corresponds to the required 510 keyword: if the entered keyword is not ? correct, the method goes back to executing the third phase 110 requesting the user to re-enter the keyword 510; advantageously, the repetition of the third phase 110 following the negative outcome of the fourth phase 115 takes place a limited number of times.

In case the entered keyword ? correct, the method goes on to carry out the fifth step 120A for extracting the interkey times and the hold times relating to the typing by the user of the keyword 510 on the keyboard.

Subsequently, in the sixth phase 125A, the method compares the interkey times and the hold times extracted in the fifth phase 120A with the reference interkey times 520 and the reference hold times 530 stored in the database 500 for the specific user (associated to the username and password entered in the first phase 100). In the event that the interkey times and/or the hold times extracted in the fifth phase 120A do not correspond (i.e., are not equal within predetermined tolerance thresholds) respectively with the reference interkey times 520 and the reference hold times 530 stored in the database 500 for the specific user, the method goes back to executing the third phase 110 asking the user to re-enter the keyword 510; advantageously, the repetition of the third phase 110 following the negative outcome of the sixth phase 125A takes place a limited number of times.

In the event that both the interkey times and the hold times extracted in the fifth phase 120A correspond respectively with the reference interkey times 520 and the reference hold times 530 stored in the database 500 for the specific user, the method passes to perform the seventh step 130A, in which the user is shown on the computer screen a specific interface in which to perform predefined interactions with the mouse (such as moving the cursor in a given path and/or clicking on objects or precise points of the interface ).

Then, the method carries out the eighth phase 135A for extracting the dynamics of the mouse and the interclick times relating to the interaction by the user with the mouse, which are compared in the subsequent ninth phase 140A with the reference dynamics 540 and with the times of reference interclicks 550 stored in the database 500 for the specific user.

In the event that the mouse dynamics and/or the interclick times extracted in the eighth phase 135A do not correspond (i.e., are not equal within predetermined tolerance thresholds) respectively with the reference dynamics 540 and with the stored reference interclick times 550 in the database 500 for the specific user, the method goes back to executing the seventh step 130A requesting the user to carry out some predefined interactions with the mouse; advantageously, the repetition of the seventh step 130A takes place a limited number of times.

In the event that the outcome of the comparison of the ninth phase 140A is negative (for all the permitted repetitions of the seventh phase 130A), the user is denied access.

It must be kept in mind that other embodiments of the method according to the invention can provide that, in the event that the result of the comparison of the ninth phase 140A is negative (for all the permitted repetitions of the seventh phase 130A), the user is granted access after providing a higher level password, or the user is granted limited access (in terms of time and/or functionality of the program or online platform), or the user is granted access by notifying the ?event to the administrator user and intercepting the user?s actions for later analysis.

In the event that both the mouse dynamics and the interclick times extracted in the eighth phase 135A correspond respectively with the reference dynamics 540 and with the reference interclick times 550 stored in the database 500 for the specific user, the method allows the user, what? correctly identified, to access the program or the online platform in a tenth phase 145, and the method performs an eleventh phase 150A for collecting the data extracted in the fifth phase 120A and in the eighth phase 135A which are transmitted for insertion in the database 500, which is so? updated with each login.

The method illustrated in Figure 1 ? effective and simple to use for the end user.

In fact, as far as mouse dynamics are concerned, only data relating to mouse movements and interclick times are advantageously collected, allowing training time to be reduced without losing accuracy. As regards keyboard dynamics, the interkey and hold times are collected.

Advantageously, in the event that the third phase 110 is repeated (following the negative outcome of the fourth phase 115 or of the sixth phase 125A), the user is asked to insert a keyword 510 which is different from the one requested in the previous executions of the third phase 110. In fact, in case of incorrect entry of the keyword, the user could be led to write more? the latter slowly, consequently distorting the measurement of the interkey times and the hold times. There? involves storing in the database 500 a finite sequence of keywords 510.

The method illustrated in Figure 1 is advantageously performed by means of an artificial neural network specially trained to solve the classification problem considered. When the neural network is created, the following are defined:

- the Dataset consisting of a training set, on which the net is trained, and a test set, on which its accuracy is tested; both the data collection and the creation of the dataset advantageously take place in a supervised manner;

- the cost function used to evaluate the performance of the neural network (in the example of a classification problem the crossed entropy can be used as a cost function);

- the optimization method configured to find the input parameters or arguments of a function that result in the maximum or minimum of the function (e.g. the stochastic gradient descent method or SGD -Stochastic Gradient Descent); and

- the model, i.e. the architecture of the neural network which, consequently, defines its model (e.g., linear or non-linear).

The neural network is trained on the training set and the accuracy is evaluated on the test set (feature extraction from the data is performed automatically by the network). Next, the pre-trained network is used to classify a user in a binary fashion, resulting in either access denied or access allowed. In this way, ? It is possible to carry out the entire method as a single block.

With reference to Figure 2, you can? note that a second embodiment of the computer-implemented method of user identification during computer logins according to the invention differs from the first embodiment in that it is based only on mouse dynamics (and not also on interclick times) and on the interkey times of the user?s interaction with the keyboard (and not also on the hold times).

In the following, only the steps of the second embodiment of the method of Figure 2 which differ from those of the first embodiment of the method of Figure 1 are described.

In case the entered keyword ? correct, the method goes on to carry out the fifth phase 120B of extraction of the interkey times relating to the typing by the user of the keyword 510 on the keyboard.

Subsequently, in the sixth phase 125B, the method compares the interkey times extracted in the sixth phase 120A with the reference interkey times 520 stored in the database 500 for the specific user (associated with the username and password entered in the first phase 100). In the event that the interkey times extracted in the fifth phase 120B do not correspond (i.e., are not equal within predetermined tolerance thresholds) with the reference interkey times 520 stored in the database 500 for the specific user, the method goes back to executing the third phase 110 asking the user to re-enter the password 510.

In the event that the interkey times extracted in the fifth phase 120B correspond with the reference interkey times 520 stored in the database 500 for the specific user, the method goes on to execute the seventh phase 130B, in which the user is shown on the screen computer a specific interface in which to perform predefined interactions with the mouse. In particular, in this specific interface a series of questions are presented to which ? associated with an affirmative (YES) or negative (NO) answer, and to the user? required to move the mouse to click on the virtual YES/NO button (corresponding to the correct answer) that appears on the interface for each question.

Then, the method carries out the eighth phase 135B of extracting the dynamics of the mouse and the responses provided by the user by selecting the virtual YES/NO keys, which are compared in the subsequent ninth phase 140B with the reference dynamics 540 and with the responses 560 references stored in the database 500 for the specific user.

In the event that the dynamics of the mouse and/or the answers extracted in the eighth phase 135B do not correspond (i.e., the dynamics are not equal within predetermined tolerance thresholds and/or the answers are not correct) respectively with the dynamics 540 of reference and with the reference responses 560 stored in the database 500 for the specific user, the method returns to performing the seventh step 130B requesting the user to perform predefined interactions with the mouse; advantageously, the repetition of the seventh step 130B takes place a limited number of times.

In the event that the result of the comparison of the ninth phase 140B is negative (for all the permitted repetitions of the seventh phase 130B), the user is denied access.

It must be kept in mind that other embodiments of the method according to the invention can provide that, in the event that the result of the comparison of the ninth phase 140B is negative (for all the permitted repetitions of the seventh phase 130B), the user is granted access after providing a higher level password, or the user is granted limited access (in terms of time and/or functionality of the program or online platform), or the user is granted access by notifying the ?event to the administrator user and intercepting the user?s actions for later analysis.

In the event that both the mouse dynamics and the answers extracted in the eighth phase 135B correspond respectively with the reference dynamics 540 and with the reference answers 560 stored in the database 500 for the specific user, the method allows the user, who? correctly identified, to access the program or the online platform in the tenth phase 145, and the method performs the eleventh phase 150B of collecting the data extracted in the fifth phase 120B and in the eighth phase 135B which are transmitted for insertion into the database 500 , what comes like this? updated with each login.

The second embodiment of the method according to the invention illustrated in Figure 2 is performed as a single fast and efficient blindfolded identification process. As said, this second embodiment ? based on a collection of data which, as far as the mouse is concerned, relate to mouse movements and responses to questions. In particular, for mouse dynamics, only the features that have a significant impact on the identification process are collected; as regards the answers, a total of 10 are considered: 5 referring to expected questions and 5 referring to unexpected questions (control questions are not considered). In this way ? possible to speed up the identification process while maintaining an adequate level of accuracy. As far as keyboard dynamics are concerned, the interkey times are collected and, in order not to lose accuracy, keywords having at least 20 characters are considered.

The method illustrated in Figure 2 is advantageously performed using a classifier based on Pattern Recognition and Machine Learning techniques. When the classifier is created, the following are defined:

- the Dataset, in which both the data collection and the creation of the dataset advantageously take place in a supervised manner;

- the cost function used to evaluate the performance of the classifier; - the optimization method configured to find the input parameters or arguments of a function which result in the maximum or minimum of the function; and

- the model, i.e. the type of classifier used (e.g. k-nearest neighbors or k-NN, Decision Tree or Decision Tree).

With reference to Figure 3, can you? note that a third embodiment of the computer-implemented method of user identification during computer logins according to the invention differs from the first embodiment in that it is based only on the interkey times of the user's interaction with the keyboard ( and not also on hold times).

In the following, only the steps of the third embodiment of the method of Figure 3 which differ from those of the first embodiment of the method of Figure 1 are described.

In case the entered keyword ? correct, the method goes on to perform the fifth phase 120B and the sixth phase 125B as in the second embodiment of the method of Figure 2.

In the eleventh phase 150C the third embodiment of the method according to the invention collects the data extracted in the fifth phase 120B and in the eighth phase 135A which are transmitted for insertion into the database 500, which is thus updated with each login.

The third embodiment of the method according to the invention illustrated in Figure 3 ? based on a collection of data which, as regards interaction with the keyboard, relate only to interkey times, which are divided into 3 categories: times relating to sequences of lowercase letters, times relating to sequences of uppercase letters and times related to special characters. Consequently, the number of collected features ? limited, allowing speed? execution and accuracy. As far as interaction with the mouse is concerned, mouse dynamics and interclick times are collected.

The method illustrated in Figure 3 is advantageously performed by means of an artificial neural network specially trained to solve the classification problem considered. When the neural network is created, the following are defined:

- the Dataset consisting of a training set, on which the net is trained, and a test set, on which its accuracy is tested; both the data collection and the creation of the dataset advantageously take place in a supervised manner;

- the cost function used to evaluate the performance of the neural network; - the optimization method configured to find the input parameters or arguments of a function which result in the maximum or minimum of the function; and

- the model, i.e. the architecture of the neural network which, consequently, defines its model.

The neural network is trained on the training set and the accuracy is evaluated on the test set (feature extraction from the data is performed automatically by the network). Next, the pre-trained network is used to classify a user in a binary fashion, resulting in either access denied or access allowed. In this way, ? It is possible to carry out the entire method as a single block.

In the foregoing the preferred embodiments have been described and variations of the present invention have been suggested, but ? to be understood that the experts of the branch will be able to make modifications and changes without with what? leave its scope of protection, as defined by the attached claims.

Claims (12)

1. A computer-implemented method of identifying a user during logins via a computer, equipped with a screen, keyboard and pointing device, comprising the following steps: A. receive (100) a user's username and password, verify (105) their correctness and continue with the subsequent phases only if both the username and password entered by the user are correct; B. displaying (110) on the computer screen an access page which requires the user to type on the keyboard at least one keyword (510) taken from a database (500); C. check (115) whether the password entered by the user matches the password (510) requested or not; D. if the keyword entered in step C does not correspond to the requested keyword (510), go back to carrying out step B, otherwise carry out the next step E; E. extract (120B) interkey times relating to a typing by the user of the keyword entered in phase B on the keyboard; F. comparing (125B) the interkey times extracted in step E with the reference interkey times (520) stored in the database (500) for the user associated with the username and password entered in step A; G. if the interkey times extracted in phase E do not correspond with the reference interkey times (520) stored in the database (500) for the user associated with the username and password entered in phase A, go back to executing phase B, otherwise carry out the following phase H; H. displaying (130A; 130B) on the computer screen an interface which requires the user to perform interactions with the pointing device, wherein said interactions are selected from a first combination of interactions comprising one or more? cursor movements and one or more? clicks on areas of the interface and a second combination of interactions including one or more? cursor movements and clicks on one or more? virtual keys corresponding to respective answers to one or more? questions presented on the interface; J. extract (135A; 135B) dynamics of the pointing device and additional parameters of interaction with the pointing device consisting, in the case in which in phase H said interactions consist of the first combination of interactions, in interclick times related to said interactions or , in the event that in phase H said interactions consist of the second combination of interactions, in responses selected by the user by clicking on said one or more? virtual keys; K. comparing (140A; 140B) said dynamics and said additional parameters of interaction with the pointing device extracted in step J with reference dynamics (540) and additional reference parameters (550; 560) of interaction with the memorized pointing device in the database (500) for the user associated with the username and password entered in phase A; L. in the event that said dynamics and said additional parameters of interaction with the pointing device extracted in step J correspond respectively with the reference dynamics (540) and the additional reference parameters (550; 560) of interaction with the pointing device pointing stored in the database (500) for the user associated with the username and password entered in phase A, carry out the subsequent phase M, otherwise go back to carrying out phase H; M. allow (145) the user to access a program executed by the computer or an online platform; N. transmitting (150B; 150C) the interkey times extracted in step E and said dynamics and said additional interaction parameters with the pointing device extracted in step J to the database (500) for its updating. The computer-implemented method according to claim 1, wherein, in case in step H said interactions consist of the first combination of interactions, the computer-implemented method ? performed using a neural network. The computer-implemented method according to claim 1, wherein, in case in step H said interactions consist of the second combination of interactions, the computer-implemented method ? performed using a classifier based on Pattern Recognition and Machine Learning techniques. The computer-implemented method according to claim 1, wherein: - in phase E are (120A) also extracted? hold times relating to typing by the user of the keyword entered in phase B on the keyboard; - in phase F are they also? compared (125A) the hold times extracted in step E with reference hold times (530) stored in the database (500) for the user associated with the username and password entered in step A; - in phase G, in the event that said interkey times and said hold times extracted in phase E correspond respectively to the reference interkey times (520) and the reference hold times (530) stored in the database (500) for the user associated with the username and password entered in phase A, perform the following phase H, otherwise go back to phase B; - in phase N, transmit (150A) also? the hold times extracted in phase E to the database (500) for its update. The computer-implemented method according to claim 4, wherein the computer-implemented method is performed using a neural network. 6. A computer-implemented method according to any preceding claim, wherein the return to phase H from phase L is repeatable up to a first maximum number of times. 7. The computer-implemented method according to claim 6, wherein, upon reaching said first maximum number of times returning to step H from step L, the user is denied access to said computer-executed program or to said online platform, or to the user? granted access to said program run by the computer or to said online platform after providing a higher-level password, or to the user? granted limited access to said computer program or online platform, or to the user? granted access and a report is sent to an administrator user. The computer-implemented method according to any one of the preceding claims, wherein the return to phase B from phase D and/or from phase G is repeatable up to a second maximum number of times. The computer-implemented method according to any one of the preceding claims, wherein the pointing device is a mouse. 10. User identification system comprising one or more unit? processing, at least one screen, at least one keyboard, at least one pointing device and at least one database (500), in which said one or more? unit? processors are configured to perform the computer-implemented method of identifying a user during logins via a computer according to any one of claims 1 to 9. 11. Set of one or more? computer programs comprising instructions which, when executed by one or more unit? process of an identification system provided with at least one screen, at least one keyboard, at least one pointing device and at least one database (500), cause said one or more? unit? processor to perform the computer-implemented method of identifying a user during logins via a computer according to any one of claims 1 to 9. 12. Set of one or more? memory supports readable by a processor that has stored on it the set of one or more? computer programs according to claim 11.