THE DYNAMIC NONCE BASED AUTHENTICATION SCHEME TO DEFEND INTERMEDIARY ATTACK FOR WEB SERVICES
- 1 Anna University, India
Abstract
Nowadays, Web services have used drastically for various online applications like banking, e-bill processing. All online services need robust security architecture for handling sensitive data like user name, password. But, The Web service has security problems that need to be solved. The existing security scheme lacks to defend the attacks from replay and password guessing attacks. In this study we proposed a new scheme for a secure authentication procedure for the web service to enhance the security of the existing schemes. The proposed system has been implemented with the Dynamic Nonce for validating the user with username and password which is embedded with WS-Security. The Dynamic Nonce has been implemented with the user’s mouse movement by satisfying the condition given in the proposed scheme. It has changed for every session because it is generated from user’s mouse movements. The system has analyzed with possible attacks. The proposed dynamic nonce based authentication scheme is suitable for lower.
DOI: https://doi.org/10.3844/jcssp.2013.998.1007
Copyright: © 2013 Elangovan Uma and Arputharaj Kannan. This is an open access article distributed under the terms of the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are credited.
- 3,296 Views
- 3,278 Downloads
- 0 Citations
Download
Keywords
- Web Services
- Authentication
- DynamicNonce
- WS-Security
- Security Token
- Time Stamp