Research Article Open Access

THE DYNAMIC NONCE BASED AUTHENTICATION SCHEME TO DEFEND INTERMEDIARY ATTACK FOR WEB SERVICES

Elangovan Uma1 and Arputharaj Kannan1
  • 1 Anna University, India

Abstract

Nowadays, Web services have used drastically for various online applications like banking, e-bill processing. All online services need robust security architecture for handling sensitive data like user name, password. But, The Web service has security problems that need to be solved. The existing security scheme lacks to defend the attacks from replay and password guessing attacks. In this study we proposed a new scheme for a secure authentication procedure for the web service to enhance the security of the existing schemes. The proposed system has been implemented with the Dynamic Nonce for validating the user with username and password which is embedded with WS-Security. The Dynamic Nonce has been implemented with the user’s mouse movement by satisfying the condition given in the proposed scheme. It has changed for every session because it is generated from user’s mouse movements. The system has analyzed with possible attacks. The proposed dynamic nonce based authentication scheme is suitable for lower.

Journal of Computer Science
Volume 9 No. 8, 2013, 998-1007

DOI: https://doi.org/10.3844/jcssp.2013.998.1007

Submitted On: 21 April 2013 Published On: 4 July 2013

How to Cite: Uma, E. & Kannan, A. (2013). THE DYNAMIC NONCE BASED AUTHENTICATION SCHEME TO DEFEND INTERMEDIARY ATTACK FOR WEB SERVICES. Journal of Computer Science, 9(8), 998-1007. https://doi.org/10.3844/jcssp.2013.998.1007

  • 2,631 Views
  • 2,884 Downloads
  • 0 Citations

Download

Keywords

  • Web Services
  • Authentication
  • DynamicNonce
  • WS-Security
  • Security Token
  • Time Stamp