Double Authentication Research Articles

Recursively Accrual Authentication of Web Application against SQL Injection Attack

Web applications allow legitimate website visitors to submit and retrieve data to/from a database over the Internet. Web applications are used for collecting information, and analyze it. Sql injection is one of the most dangerous attacks which are used to access database without authentication. SQL is used to retrieve; insert data to/from the database .Using sql command make it a malicious code for attack at authentication section of front end of web application and send to the server. This process is known as SQL injection authorization attack.SQL injection authorization attack easily gets entry in the database and catches all information from database. This paper illustrates the method for prevention from SQL injection authorization attack i.e. recursively authentication or double authentication. Automatically authentication will increase. We are going to implement recursive method on web based program using string inputs and its ASCII value General Terms: Web application, authentication, and Increase authentication Keyword: ASCII, recursive authentication, double authentication

Double Delegation-Based Authentication and Key Agreement Protocol for PCSs

Many protocols have been proposed for solving the user authentication in portable communication system. One of the schemes is based on the delegation concept. Home Location Register (HLR) delegates Mobile Station (MS) to be authenticated by Visitor Location Register (VLR). The main drawback of the scheme is that the HLR is required during the online authentication phase between VLR and MS. In this paper, a double delegation-based authentication and key agreement protocol is proposed. The main advantage of our protocol is that this scheme requires only MS and VLR online. This protocol will thoroughly utilize the proxy signature features to facilitate the operation of this protocol while only requires two members (MS, VLR) to be online at the same time.

Improvement of a SIP Security Mechanism

SIP is one of the mainstream protocols in the VoIP. A majority of SIP’s security mechanism only provides a single direction authentication from server to client such as HTTP digest authentication. To improve the present situation, a new security mechanism of SIP based on the improved HTTP digest authentication is put forward in this study. This improved security mechanism not only provides a double direction authentication between the server and client but also reduces the expenses of the server and increases the authentication efficiency thanks to its low computational complexity.

Evaluation of OpenID-Based Double-Factor Authentication for Preventing Session Hijacking in Web Applications

Web users often find it difficult to manage their identities (IDs) due to large number of web applications. An effective and convenient ID management system is needed to handle the problem. OpenID is one of the better solutions to manage this task on heterogeneous web applications due to its lightweight and simple protocol. However, it is quite vulnerable to session hijacking, resulting in identity theft of a particular user. In this paper, we present a modified approach, based on double authentication that minimizes the risk of session hijacking in an OpenID environment.

A Novel IBE Based Authentication Scheme for Network Storage

Public Key Infrastructure (PKI) based or Identity-based Encryption (IBE) based authentication schemes are introduced into network storage systems recently. However, the schemes have unavoidable disadvantages:(1)the exchange of digital certificates are complicated.(2)the public key is long.(3)the transmission of private key is vulnerable. In this paper, we design a network storage authentication scheme using Double-PKG. The theoretical and experimental results show that it can ensure the confidentiality, integrity, availability and non-repudiation during data transmission and storage. Our scheme uses the double authentication infrastructure. And it can effectively protect the key transmission. The data encryption and decryption in experiments are relatively stable, so the overall scheme efficiency has been greatly improved.

A Novel IBE Based Authentication Scheme for Network Storage

Public Key Infrastructure (PKI) based or Identity-based Encryption (IBE) based authentication schemes are introduced into network storage systems recently. However, the schemes have unavoidable disadvantages:(1)the exchange of digital certificates are complicated.(2)the public key is long.(3)the transmission of private key is vulnerable. In this paper, we design a network storage authentication scheme using Double-PKG. The theoretical and experimental results show that it can ensure the confidentiality, integrity, availability and non-repudiation during data transmission and storage. Our scheme uses the double authentication infrastructure. And it can effectively protect the key transmission. The data encryption and decryption in experiments are relatively stable, so the overall scheme efficiency has been greatly improved.

Authentication Based and Optimized Routing Technique in Mobile Ad hoc Networks

Problem statement: An Ad hoc network has been defined as a self-organizing, dynamic topology network formed by a group of wireless mobile nodes. Minimal configuration, absence of infrastructure and quick deployment, would make ad hoc networks convenient for emergency situations other than military applications. In recent years, security in Ad hoc Networks as a research topic had started to receive attention from a growing number of researchers. Approach: Several ad hoc network routing protocols have been proposed; only some of them consider the security problems. To secure an ad hoc network, the attributes like availability, confidentiality, integrity, authentication and non-repudiation may be considered. In this study, authentication is taken into consideration. Here, Double Hash Authentication Technique (DHT) has been incorporated for ad hoc networks. The security associations between nodes were established, when they were in the vicinity of each other, by exchanging appropriate cryptographic information. This security mechanism has been simulated on Dynamic Source Routing (DSR) protocol in addition to Self-Healing and Optimized Routing Technique (SHORT) made the routing secure for ad hoc networks. Result: The results have shown that in a moderately changing network, the Double Hash Technique has provided secure routing even in the presence of malicious nodes. Conclusion: The Double Hash Technique in association with SHORT has improved the performance of the DSR protocol.

Secret image sharing based on cellular automata and steganography

Recently Lin and Tsai [Secret image sharing with steganography and authentication, The Journal of Systems and Software 73 (2004) 405–414] and Yang et al. [Improvements of image sharing with steganography and authentication, The Journal of Systems and Software 80 (2007) 1070–1076] proposed secret image sharing schemes combining steganography and authentication based on Shamir's polynomials. The schemes divide a secret image into some shadows which are then embedded in cover images in order to produce stego images for distributing among participants. To achieve better authentication ability Chang et al. [Sharing secrets in stego images with authentication, Pattern Recognition 41 (2008) 3130–3137] proposed in 2008 an improved scheme which enhances the visual quality of the stego images as well and the probability of successful verification for a fake stego block is 1 / 16 . In this paper, we employ linear cellular automata, digital signatures, and hash functions to propose a novel ( t , n ) -threshold image sharing scheme with steganographic properties in which a double authentication mechanism is introduced which can detect tampering with probability 255 / 256 . Employing cellular automata instead of Shamir's polynomials not only improves computational complexity from O ( n log 2 n ) to O ( n ) but obviates the need to modify pixels of cover images unnecessarily. Compared to previous methods [C. Lin, W. Tsai, Secret image sharing with steganography and authentication, The Journal of Systems and Software 73 (2004) 405–414; C. Yang, T. Chen, K. Yu, C. Wang, Improvements of image sharing with steganography and authentication, The Journal of Systems and Software 80 (2007) 1070–1076; C. Chang, Y. Hsieh, C. Lin, Sharing secrets in stego images with authentication, Pattern Recognition 41 (2008) 3130–3137], we use fewer number of bits in each pixel of cover images for embedding data so that a better visual quality is guaranteed. We further present some experimental results.

Authentication based on feature of hand-written signature

The typical features of the coordinate and the curvature as well as the recorded time information were analyzed in the hand-written signatures. In the hand-written signature process 10 biometric features were summarized: the amount of zero speed in direction x and direction y, the amount of zero acceleration in direction x and direction y, the total time of the hand-written signatures, the total distance of the pen traveling in the hand-written process, the frequency for lifting the pen, the time for lifting the pen, the amount of the pressure higher or lower than the threshold values. The formulae of biometric features extraction were summarized. The Gauss function was used to draw the typical information from the above-mentioned biometric features, with which to establish the hidden Markov mode and to train it. The frame of double authentication was proposed by combing the signature with the digital signature. Web service technology was applied in the system to ensure the security of data transmission. The training practice indicates that the hand-written signature verification can satisfy the needs from the office automation systems.