Journal of Computer Science

THE DYNAMIC NONCE BASED AUTHENTICATION SCHEME TO DEFEND INTERMEDIARY ATTACK FOR WEB SERVICES

Elangovan Uma and Arputharaj Kannan

DOI : 10.3844/jcssp.2013.998.1007

Journal of Computer Science

Volume 9, Issue 8

Pages 998-1007

Abstract

Nowadays, Web services have used drastically for various online applications like banking, e-bill processing. All online services need robust security architecture for handling sensitive data like user name, password. But, The Web service has security problems that need to be solved. The existing security scheme lacks to defend the attacks from replay and password guessing attacks. In this study we proposed a new scheme for a secure authentication procedure for the web service to enhance the security of the existing schemes. The proposed system has been implemented with the Dynamic Nonce for validating the user with username and password which is embedded with WS-Security. The Dynamic Nonce has been implemented with the user’s mouse movement by satisfying the condition given in the proposed scheme. It has changed for every session because it is generated from user’s mouse movements. The system has analyzed with possible attacks. The proposed dynamic nonce based authentication scheme is suitable for lower.

Copyright

© 2013 Elangovan Uma and Arputharaj Kannan. This is an open access article distributed under the terms of the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are credited.