Application of session login and one time password in fund transfer system using RSA algorithm

Abstract

Password thefts, a serious security threat to Internet users where the perpetrator steals the secure password and misuses it which makes the individual look like legitimate user, in an order to gather personal and financial information. It is important to prevent such identity theft attacks especially in fund transfer. One of the ways to prevent the password theft is to authenticate the user. Creating a high secure password can achieve high level of security in authenticating the user over the internet. Using the instant mailing service available in internet, user will obtain the public key. Then the private key is shared using secure server client connection ensuring legitimate user receives the private key. Both the keys are generated as RSA Tokens using Random password number Generator which are synchronized between server and client and the login expires once the current time limit exceeds the access time. The main aim is to use session login narrowing the login time thereby reducing the probability of hacking. These algorithms are very economical to implement provided they are time synchronized with the user.