Bello Alhaji Buhari

Work place: Department of Mathematics, Computer Science Unit, Usmanu Danfodiyo University, Sokoto – Nigeria

E-mail: buhari.bello@udusok.edu.ng

Website:

Research Interests: Information Security, Network Security, World Wide Web, Information-Theoretic Security

Biography

Bello Alhaji Buhari, Obtained B.Sc. in Computer Science at Usmanu Danfodiyo UniversitySokoto – Nigeria and M.Sc. in Computer Science at Ahmadu Bello University Zaria –Nigeria. He is now pursuing Ph.D. in Computer Science at Usmanu Danfodiyo UniversitySokoto – Nigeria. He is a Lecture in the Department of Computer Science, Usmanu Danfodiyo University Sokoto – Nigeria since 2004. His research interest include: Web Security and Cryptography.

Author Articles
Web Applications Login Authentication Scheme Using Hybrid Cryptography with User Anonymity

By Bello Alhaji Buhari Afolayan Ayodele Obiniyi

DOI: https://doi.org/10.5815/ijieeb.2022.05.05, Pub. Date: 8 Oct. 2022

It is a common requirement for modern web applications as many if not all services that need personalization and control of access move online. Due to increase in these services becoming online, login authentications become targets to attackers. Therefore, there is need for secure and efficient web application login authentication schemes to ensure users access control, security and privacy. Present schemes have limitations such as users spent a lot of time browsing to create image portfolios than to create passwords and PINs, subject to active impersonation attack, some will only suit well for financial transaction system due to the TIC involved, some may have hash collisions, some require addition BLE device to be install and available on the authentication systems and cannot be used for higher data rates and long distance unlike cellular and WiFi devices, some involves reuse of password at single or multiple service providers which may lead to a password reuse attack called domino effect and some work well in application that needs to share permission with other applications like social media applications inform of APIs and improvising of user anonymity. We propose an improved web application login authentication scheme using hybrid cryptography with user anonymity. The improved scheme used blowfish – the most efficient private key algorithm, Elgamal – very secure public key algorithm and SHA-2 hash function combined together to enable high performance and security. The methods are thoroughly discussed and its security evaluated to show that it provides password protection, user privacy, perfect forward secrecy, mutual authentication and security against impersonation attack.

[...] Read more.
Other Articles