SecureAuth

An authentication system where the passwords are stored in an advanced cipher and dynamically the hash changes if two users have the same password.

Comment

Team Name : CYBERKNIGHT Team Number : 3 Challenge (Intermediate/Advance) : Create a complete User Authentication Systems. Team Members : 1. Aaqib Shaikh 2. Ishi Saxena 3. Ravi Prakash 4. Mohammed Touheed Patel

Inspiration

Attacks on Authentication System Types of attack :

  1. Brute Force Attacks.
  2. Dictionary Attacks.
  3. Password Spraying Attacks.
  4. Credential Stuffing Attacks. Today’s Internet has been twisted and contorted to use authentication and session management, essentially breaking both. The most common authentication attack uses a proxy-based attack tool (Burp Suite’s Intruder, for example) to brute force the login credentials of a legitimate user. This makes it a perfect fit for SecureAuth.

What it does

  1. Multi level data encryption.
  2. Using Symmetric as well as Asymmetric Cipher.
  3. Utilizing Core Cryptographic Methods including Base64,conversion & XOR operation.
  4. Dynamic effective password generation for two identical passwords of different users.
  5. Modular and easy to implement.

How we built it

We've built it using Python, Django, Cryptography, JavaScript

Challenges we ran into

As a team, we all agree our biggest challenge was to work remotely and stay connected to make sure that we develop this solution efficiently and in time. Our other challenge was to find and use the appropriate technologies to get the desired results.

Accomplishments that we're proud of

  1. Dynamic Hashes for same password.
  2. Content Encryption with users passwords .
  3. Easily Implementable for Platform Independent application using Containers.
  4. Co-ordination of advance and traditional cryptography.

What we learned

If we worked together as a team, acknowledge everyone's opinions and ideas, use each member's skills to our advantage, we can accomplish anything.

What's next for SecureAuth

  1. Running on Decentralized Blockchain Technology.
  2. Captcha for security purpose.
  3. Implementation of code on GOLang for security purpose.

Built With

Share this project:

Updates