|Tags: PASSWORD, MORE, SECURE, AUTHENTICATION, full, report, 3D PASSWORD FOR MORE SECURE AUTHENTICATION ppt, 3D PASSWORD FOR MORE SECURE AUTHENTICATION pdf, 3d password for more secure authentication, 3d password sbi, 3d password icici,|
3D PASSWORD FOR MORE SECURE AUTHENTICATION full report
18-04-2011, 11:29 AM
RE: 3D PASSWORD FOR MORE SECURE AUTHENTICATION full report
3D PASSWORD FOR MORE SECURE AUTHENTICATION
We propose the 3D passwords for more secure authentications, which are more customizable and very interesting way of authentication.
Multifactor authentication scheme.
3D virtual environment.
Selection of objects.
Higher user acceptability.
Choice of authentication scheme.
Smart cards or token.
Freedom to select.
Difficult to share with others.
Easily revoked or share.
typing letter or number clicks
specific key pressed
clicking specific key pressed
access access granted
Several authentication schemes.
Designed according to protected system.
Decide own authentication.
Used in critical areas.
3D environment can be changed.
Difficult to crack.
Added with biometrics and card verification.
Determining password space.
Shoulder surfing attack.
In critical system:
Nuclear and Military.
Airplanes and Jet fighters.
Applications in small virtual environment
Personal Digital Assistance.
Desktop computer and Laptop logins.
19-04-2011, 04:29 PM
RE: 3D PASSWORD FOR MORE SECURE AUTHENTICATION full report
Authentication is the process of validating who you are to whom you claimed to be. In general, there are four human authentication techniques:
1. What you know (knowledge based).
2. What you have (token based).
3. What you are (biometrics).
4. What you recognize (recognition based).
Textual passwords are the most common authentication techniques used in the computer world. Textual password has two conflicting requirements: passwords should be easy to remember and hard to guess.
Normally the authentication scheme the user undergoes is particularly very lenient or very strict. Throughout the years authentication has been a very interesting approach. With all the means of technology developing, it can be very easy for 'others' to fabricate or to steal identity or to hack someone’s password. Therefore many algorithms have come up each with an interesting approach toward calculation of a secret key. The algorithms are such based to pick a random number in the range of 10^6 and therefore the possibilities of the sane number coming is rare.
Users nowadays are provided with major password stereotypes such as textual passwords, biometric scanning, tokens or cards (such as an ATM) etc .Mostly textual passwords follow an encryption algorithm as mentioned above. Biometric scanning is your "natural" signature and Cards or Tokens prove your validity. But some people hate the fact to carry around their cards, some refuse to undergo strong IR exposure to their retinas(Biometric scanning).Mostly textual passwords, nowadays, are kept very simple say a word from the dictionary or their pet names, birthdates etc. Years back hackers performed such tests and he could crack 10-15 passwords per day. Now with the technology change, fast processors and many tools on the Internet this has become a Child's Play.
Therefore I present my idea, the 3D passwords which are more customizable and very interesting way of authentication. Now the passwords are based on the fact of Human memory. Generally simple passwords are set so as to quickly recall them. The human memory, in our scheme has to undergo the facts of Recognition, Recalling, Biometrics or Token based authentication. Once implemented and you log in to a secure site, the 3D password GUI opens up. This is an additional textual password which the user can simply put. Once he goes through the first authentication, a 3D virtual room will open on the screen. In our case, let’s say a virtual garage. Now in a day to day garage one will find all sorts of tools, equipments, etc.each of them having unique properties. The user will then interact with these properties accordingly. Each object in the 3D space, can be moved around in an (x,y,z) plane. That’s the moving attribute of each object. This property is common to all the objects in the space. Suppose a user logs in and enters the garage. He sees and picks a screw-driver (initial position in xyz coordinates (5, 5, 5)) and moves it 5 places to his right (in XY plane i.e. (10, 5, 5).That can be identified as an authentication. Only the true user understands and recognizes the object which he has to choose among many. This is the Recall and Recognition part of human memory coming into play. Interestingly, a password can be set as approaching a radio and setting its frequency to number only the user knows. Security can be enhanced by the fact of including Cards and Biometric scanner as input. There can be levels of authentication a user can undergo.
The 3D password gives users the freedom of selecting what type of authentication techniques they want to be performed as their 3D password. The 3D password has a large number of possible passwords because of the high number of possible actions and interactions towards every object and towards the three dimensional virtual environment.
2. DISADVANTAGES OF EXISTING SYSTEM
Current authentication system has many loopholes. Current authentication systems suffer from many weaknesses :
• Textual passwords are commonly used. Users tend to choose meaningful words from dictionaries, which make textual passwords easy to crack.
• Textual passwords are vulnerable to dictionary or brute force attacks.
• Many available graphical passwords have a password space that is less than or equal to the textual password space.
• Smart cards or tokens can be stolen.
• Many biometric authentications have been proposed. However, users tend to resist using biometrics because of their intrusiveness and the effect on their privacy. Moreover, biometrics cannot be revoked.
The 3D password is a multi factor authentication scheme. The design of the 3D virtual environment and the type of objects selected determine the 3D password key space. User have freedom to select whether the 3D password will be solely recall, recognition, or token based, or combination of two schemes or more.
3. 3-D PASSWORD MODULE
3.1. PROPOSED SYSTEM
The proposed system is a multi factor authentication scheme that combines the benefits of various authentication schemes. Users have the freedom to select whether the 3D password will be solely recall, biometrics, recognition, or token based, or a combination of two schemes or more. This freedom of selection is necessary because users are different and they have different requirements. Therefore, to ensure high user acceptability, the user’s freedom of selection is important.
The following requirements are satisfied in the proposed scheme
1. The new scheme provide secrets that are easy to remember and very difficult for intruders to guess.
2. The new scheme provides secrets that are not easy to write down on paper. Moreover, the scheme secrets should be difficult to share with others.
3. The new scheme provides secrets that can be easily revoked or changed.
4.It fails all the attacks like brute force attacks , dictionary attacks, etc. Hence security is enhanced
3.2. BRIEF DESCRIPTION OF SYSTEM
The proposed system is a multi factor authentication scheme. It can combine all existing authentication schemes into a single 3D virtual environment .This 3D virtual environment contains several objects or items with which the user can interact. The user is presented with this 3D virtual environment where the user navigates and interacts with various objects. The sequence of actions and interactions toward the objects inside the 3D environment constructs the user’s 3D password. The 3D password can combine most existing authentication schemes such as textual passwords, graphical passwords, and various types of biometrics into a 3D virtual environment. The choice of what authentication schemes will be part of the user's 3D password reflects the user's preferences and requirements. A user who prefers to remember and recall a password might choose textual and graphical password as part of their 3D password. On the other hand users who have more difficulty with memory or recall might prefer to choose smart cards or biometrics as part of their 3D password. Moreover user who prefers to keep any kind of biometric data private might not interact with object that requires biometric information. Therefore it is the user's choice and decision to construct the desired and preferred 3D password.
The idea is simply outlined as follows. The user navigates through a three dimensional virtual environment. The combination and the sequence of the user’s actions and interactions towards the objects in the three dimensional virtual environment constructs the user’s 3D password. Therefore, the user can walk in the virtual environment and type something on a computer that exist in (x1, y1, z1) position, then walk into a room that has a white board that exist in a position (x2, y2, z2) and draw something on the white board. The combination and the sequence of the previous two actions towards the specific objects construct the user’s 3D password. Users can navigate through a three dimensional virtual environment that can contain any virtual object. Virtual objects can be of any type. We will list some possible objects to clarify the idea.
An object can be:
1. A computer that the user can type in
2. A white board that a user can draw on
3. An ATM machine that requires a smart card and PIN
4. A light that can be switched on/off
5. Any biometric device
6. Any Graphical password scheme
7. Any real life object
8. Any upcoming authentication scheme
Moreover, in the virtual three-dimensional environment we can have two different computers in two different locations. Actions and interactions with the first computer is totally different than actions towards the second computer since each computer has a (x,y,z) position in the three-dimensional virtual environment. Each object in the virtual three-dimensional environment has its own (x,y,z) coordinates, speed, weight and responses toward actions.
3.3. SYSTEM IMPLEMENTATION
The 3D password is a multi factor authentication scheme. The 3D password presents a 3D virtual environment containing various virtual objects. The user navigates through this environment and interacts with the objects. The 3D password is simply the combination and the sequence of user interactions that occur in the 3D virtual environment. The 3D password can combine recognition, recall, token, and biometrics based systems into one authentication scheme. This can be done by designing a 3D virtual environment that contains objects that request information to be recalled, information to be recognized, tokens to be presented, and biometric data to be verified.
For example, the user can enter the virtual environment and type something on a computer that exists in (x1 , y1 , z1 ) position, then enter a room that has a fingerprint recognition device that exists in a position (x2 , y2 , z2 ) and provide his/her fingerprint. Then, the user can go to the virtual garage, open the car door, and turn on the radio to a specific channel. The combination and the sequence of the previous actions toward the specific objects construct the user’s 3D password.
Virtual objects can be any object that we encounter in real life. Any obvious actions and interactions toward the real life objects can be done in the virtual 3D environment toward the virtual objects. Moreover, any user input (such as speaking in a specific location) in the virtual 3D environment can be considered as a part of the 3D password.
23-04-2011, 06:44 PM
RE: 3D PASSWORD FOR MORE SECURE AUTHENTICATION full report
It seems everybody needs a ppt of this topic.....Once I needed it myself but couldn't get it from here, but I downloaded the doc files uploaded here of this topic and created a powerpoint presentation for my General Presentation Subject........
I have shared my ppt here to help others who are in need of the ppt of this topic...
To download it, go to the link: