30-08-2014, 11:40 AM
Implicit Password Authentication System
Implicit Password.pptx (Size: 99.07 KB / Downloads: 10)
INTRODUCTION
Implicit Password Authentication System:
Authentication is a process of determining whether a particular individual or a device should be allowed to access a system or an application or merely an object running in a device. This is an important process which assures the basic security goals, viz. confidentiality and integrity. Also, adequate authentication is the first line of defense for protecting any resource
VARIOUS AUTHENTICATION SCHEMES
There are several authentication schemes available in the literature. They can be broadly classified as follows.
What you know
What you have and
What you are
The traditional username/password or PIN based authentication scheme is an example of the “what you know type”. Smartcards or electronic tokens are examples of “what you have type of authentication” and finally biometric based authentication schemes are examples of the
“what you are” type of authentication.
PROBLEM DEFINATION
Existing System:
The traditional username/password or PIN based authentication scheme is an example of the “what you know type”. Smartcards. As an alternative to the traditional password based scheme, the biometric system was introduced. This relies upon unique features unchanged during the life time of a human, such as finger prints, iris etc.
Proposed System:
In this paper, we focus only on “what you know” types of authentication. We propose our Implicit Password Authentication System. IPAS is similar to the Pass Point scheme with some finer differences. In every “what you know type” authentication scheme we are aware of, the server requests the user to reproduce the fact given to the server at the time of registration
SYSTEM STUDY
Create User profile Vector:
While registration of user information, the user id, security question and answer are getting for creating profile vector. Every user selects answer for security questions at the time of registration and provides their individual answer. For each question, the system then either creates an authentication space .Once the authentication space is created, the system is ready for authenticating a user.
Generate Random Question:
For each question, the server may choose a random scenario from the authentication space that represents the correct answer. The chosen scenario will have one or more “clickable” points that represent the answer to the question provided by the particular us
Enters User name and answer as location points for the random security question will decide that the user is legitimate or an imposter. the authentication information is presented to the user in an implicit form that can be understood and decoded only by the legitimate end user.
Inbox Services:
The Inbox maintains The Details of amount transferred from one account to another account
Account Management/Balance Enquiry
User can able to deposit the amount to another user; Admin can manage the account details of the user’s. If any update in the balance amount as both users can see in mobile
conclusion
In this Project , we have proposed a new Implicit Password Authentication System where the authentication information is implicitly presented to the user. If the user “clicks” the same grid-of-interest compared with the server, the user is implicitly authenticated. No password information is exchanged between the client and the server in IPAS. Since the authentication information is conveyed implicitly, IPAS can tolerate shoulder-surfing and screen dump attack, which none of the existing schemes can tolerate. The strength of IPAS lies in creating a good authentication space with a sufficiently large collection of images to avoid short repeating cycles.