Having been a core feature of IT systems for several decades, passwords continue to represent both one of the most familiar and most maligned aspects of security technology. While their potential weaknesses have been well recognized mainly over the past decade, no permanent solution has come up yet as in terms of all-round usage and applicability. Shoulder surfing, simple guessing, external eavesdropping, side channel attacks etc are the common methods which lead to password leakages. The situation gets worse when a user puts a very obvious password which can be easily guessed by anyone knowing the person even vaguely.
Most systems propose to improve both identification and verification of user but this method of mindmetrics can augment the current password based systems by strengthening the identification process. Mind-metrics utilizes personal secret data instead of a login id to identify a user uniquely. The proposed system also creates a scenario where two servers cooperate to authenticate a client and if one server is compromised, the attacker still cannot pretend to be the client with the information from the compromised server. The proposed system presents a symmetric solution for two-server key encryption, where the client can establish different cryptographic keys with the two servers, respectively.
Inhaltsverzeichnis (Table of Contents)
- I. Introduction
- i. Goals and Objectives
- II. Proposed System
- 1. Concept of Mind metrics
- 2. Algorithms used
- a. Diffie-Hellman Algorithm
- b. ElGamal Encryption Algorithm
- 3. Working
Zielsetzung und Themenschwerpunkte (Objectives and Key Themes)
This paper presents a novel two-level security system using Mindmetrics and ID2S password authentication techniques to enhance the robustness of authentication systems. The system aims to overcome the limitations of traditional password-based authentication by introducing a secure identification process that utilizes private information known only to the user and the system.
- Mindmetrics-based identification process
- Secure password authentication using PAKE protocol
- Two-server key encryption for enhanced security
- Diffie-Hellman and ElGamal algorithms for key exchange and encryption
- System architecture and working principles
Zusammenfassung der Kapitel (Chapter Summaries)
- I. Introduction: This chapter provides an overview of the security challenges associated with traditional password-based authentication systems and introduces the concept of Mindmetrics as a potential solution. It also outlines the goals and objectives of the proposed system.
- II. Proposed System: This chapter details the proposed two-level security system, explaining the concept of Mindmetrics, the algorithms used for key exchange and encryption, and the system's architecture and working principles.
Schlüsselwörter (Keywords)
The paper focuses on the concepts of Mindmetrics, PAKE protocol, Diffie-Hellman algorithm, ElGamal encryption algorithm, key generation, identification phase, and verification phase. These keywords highlight the core elements of the proposed two-level security system and its contribution to enhancing authentication security.
- Quote paper
- Ankita Pawar (Author), Snehal Anandkar (Author), Ankita Bartakke (Author), Pranjali Ganvir (Author), 2016, Two Level Security using Mindmetrics and ID2S Password Authentication Technique, Munich, GRIN Verlag, https://www.hausarbeiten.de/document/347195
