One Time Password Scheme for Identity Based Encryption

In content-based publish subscribe system authentication and confidentiality are most challenging security issues. This project presents a novel approach to provide confidentiality and authentications in a broker-less content-based publish subscribe system. The authentication of publishers and subscribers is done using pairing based cryptography. confidentiality of events is also ensured, by adapting the pairing-based cryptography mechanisms. IBE algorithm is used to solve confidentiality issue. In identity-based encryption, any valid string which uniquely identifies a user can be the public key of the user. A key server maintains a single pair of public and private master keys. The master public key can be used by the sender to encrypt and send the messages to a user with any identity, for example, an e-mail address. To successfully decrypt the message, a receiver needs to obtain a private key for its identity from the key server. The overall approach provides fine-grained key management. Published events are routed to their relevant subscribers. The evaluation of this project provide security regarding 1) authentication and confidentiality of event dissemination. To achieve the authentication and confidentiality of users and message OTP i. e One Time Password is used. OTP is dynamic password which changes every time the user logs in. An OTP is a set of randomly generated numbers that can act as a form identity for one time only. Once the password is used, it is no longer used for any further authentication. Whenever subscriber want to decrypt an event he has suppose to enter valid password that received as e-mail.