Gladius Chinnappa — Challenge Response Token Authentica...

Identification and authentication would be the first process for insuring security in any system. Most of the systems are compromised, if the authentication credentials are compromised. Authentication credentials or factors should be strong enough to provide a secure authentication system. 2-factor authentication system uses any two factors of knowledge, ownership and characteristic. I recommend using the knowledge and the ownership as the factors for authentication. The knowledge could be anything such as password, personal identification number, passphrase etc. A new algorithm has been developed to create token applications for Smartphone(Windows Phone 7). The token application is logically connected to the authentication system, but no other connections are required. The user could take ownership of the token application and use it as one of the two factors for authentication.

Technical Document link: http://gladius.honeybeast.com/tokengen.pdf

Reason for choosing Windows Phone
• Easy access to accelerometer from the application.
• Isolated storage for application data.
• Minimum of 5 MP camera resolution.
• Easy access to camera from the application.
• Good computation power for hashing, image processing and other functions.
• Native support for more cryptography functions (SHA-1 and AES).
• Personal help and support from Microsoft boot camp and Windows Phone User Group (Pete Vickers, Matt Lacey etc).
Note: I am planning to get patent for my algorithm, since I could not disclose all the functionsand code in the project. Please contact me, If you have more infomation.

Collaborators: