SECURITY USING FOUR FACTOR PASSWORD AUTHENTICATION

The project entitled as “Security Using Four Factor Password Authentication“. In the scheme the remote user does not need to use smart cards. The scheme is easy to implement. However, this authentication scheme is vulnerable to impersonation attacks and middle man attacks. An attacker could impersonate legitimate users to login and access the remote server. The scheme suffers from replay attacks and impersonation attacks. Lamport proposed a password authentication scheme to provide authentication between the users and the remote server. Since then, many password-based remote user authentication schemes have been proposed. In a smartcard based password authentication scheme, the smart card takes the password and Finger print from the users as input, computes the login message and sends the login message to the server. The server checks the validity of the user’s login message. In the mutual authentication situation, not only the server can verify the user but also a user can verify the server.