E-Authentication System Using Quick Response Code for Online Bank Account Login

Yeo, Zong Xuan (2020) E-Authentication System Using Quick Response Code for Online Bank Account Login. Final Year Project (Bachelor), Tunku Abdul Rahman University College.

Text Yeo Zong Xuan_Fulltext.pdf Restricted to Registered users only Download (3MB)

Abstract

Due to the advancement of technology, computer devices ranging from smartphone to desktop computer have be greatly improved and this also paint the path for the increasing in cybercrime. Through our research we found out that many online bank web application login portal haven’t adopt two factor authentication, making their clients vulnerable to attacks such as replay attack and brute force attacks. Therefore, the objective of this project is to adding an extra layer of security to the web application login portal while establishing a mutual trust between the bank and their clients. To achieve this we are using Quick Response Code along with SHA-256 to hashed IMEI number and encrypt the hashed value using RSA (Rivest–Shamir–Adleman) Algorithm. User will need to use the mobile application to scan the encrypted QR code generated at the web application and generate a response from the mobile application. The web application will verify the response to determine whether the user is authenticated or not. Without authentication using the app the user will not be able to login into the web application. Resulting the attacker will not compromise the victim bank account easily using the victim username and password.