Slide 1: By Harish H 3d FOR MORE SECURE AUTHENTICATION Slide 2: CONTENTS : - INTRODUCTION EXISTING SYSTEM PROPOSED SYSTEM BRIEF DESCRIPTION OF A SYSTEM SYSTEM IMPLEMENTATION 3D PASSWORD SELECTION AND INPUT APPLICATIONS CONCLUSION Slide 3: A multifactor authentication scheme. The user login by navigating through a 3D environment. Collected user action and interactions in the virtual environment construct the 3Dpassword. INDRODUCTION : - Slide 4: Current authentication systems suffer from many weaknesses. Textual passwords are commonly used Many available graphical passwords have a password space that is less than or equal to the textual password space Smart cards or tokens can be stolen. Moreover , biometrics cannot be revoked. The 3Dpassword is a multi factor authentication scheme EXISTING SYSTEM : - Slide 5: The proposed system is a multi factor authentication scheme that combines the benefits of various authentication schemes. Users have the freedom to select whether the 3D password will be solely recall, biometrics, recognition, or token based, or a combination of two schemes or more. The following requirements are satisfied in the proposed scheme The new scheme provide secrets that are easy to remember and very difficult for intruders to guess . 2. The new scheme provides secrets that are not easy to write down on paper. Moreover, the scheme secrets should be difficult to share with others . 3 . The new scheme provides secrets that can be easily revoked or changed. PROPOSED SYSTEM : - Slide 6: The 3D password can combine most existing authentication schemes such as textual passwords, graphical passwords, and various types of biometrics into a 3D virtual environment. The choice of what authentication schemes will be part of the user's 3D password reflects the user's preferences and requirements. BRIEF DESCRIPTION OF SYSTEM : - Slide 7: For example, the user can enter the virtual environment and type something on a computer that exists in (x1 , y1 , z1 ) position, then enter a room that has a fingerprint recognition device that exists in a position (x2 , y2 , z2 ) and provide his/her fingerprint. Then, the user can go to the virtual garage, open the car door, and turn on the radio to a specific channel. The combination and the sequence of the previous actions toward the specific objects construct the user’s 3D password . SYSTEM IMPLEMENTATION : - Slide 8: 1) A computer with which the user can type. 2) A fingerprint reader that requires the user’s fingerprint. 3) A biometric recognition device. 4)A paper or a white board that a user can write, sign, or draw on. 5) An automated teller machine (ATM) that requests a token; 6) A light that can be switched on/off. 7) A television or radio where channels can be selected. 8) A staple that can be punched. 9) A car that can be driven. 10) A book that can be moved from one place to another. 11) Any graphical password scheme. 12) Any real life object. 13) Any upcoming authentication scheme. OBJECTS REQUIRED : - Slide 9: The action toward an object (assume a fingerprint recognition device) that exists in location (x1, y1 , z1 ) is different from the actions toward a similar object (another fingerprint recognition device) that exists in location (x2 , y2 , z2 ), where x1 = x2 , y1 = y2 , and z1 = z2 . Therefore, to perform the legitimate 3D password, the user must follow the same scenario performed by the legitimate user. This means interacting with the same objects that reside at the exact locations and perform the exact actions in the proper sequence . PRINCIPLE : - Slide 10: Let us consider a 3D virtual environment space of size G ×G × G. The 3D environment space is represented by the coordinates (x, y, z) ∈ [1, . . . , G] ×[1, . . . , G] ×[1, . . . , G ]. consider a user who navigates through the 3D virtual environment that consists of an office and a meeting room . Let us assume that the user is in the virtual office and the user turns around to the door located in (10, 24, 91) and opens it . Then, the user closes the door. The user then finds a computer to the left, which exists in the position (4, 34, 18), and the user types “FALCON.” The initial representation of user actions in the 3Dvirtual environment can be recorded as follows: 3D PASSWORD SELECTION AND INPUT : - Slide 11: (10, 24, 91) Action = Open the car door. (10, 24, 91) Action = Close the car door. (4, 34, 18) Action = Typing, “F”. (4, 34, 19) Action = Typing, “A”. (4, 34, 17) Action = Typing, “L”. (4, 34, 16) Action = Typing, “C”. (4, 34, 15) Action = Typing, “O”. (4, 34, 14) Action = Typing, “N”. Slide 12: The design of the 3 D virtual environments affects the usability, effectiveness, acceptability of 3D password. Real Life Similarity. Object uniqueness . Three Dimensional Virtual Environment Size. Number of objects and their types . 3D VIRTUAL ENVIRNOMENT AND DESIGN GUIDES : - Slide 13: The 3D password can have a password space that is very large compared to other authentication schemes, so the 3D password’s main application domains are protecting critical systems and resources Critical server Nuclear and military facilities . Airplanes and jet fighters . 3D PASSWORD APPLICATION : - Slide 14: In addition, 3D passwords can be used in less critical systems A small virtual environment can be used in the following systems like ATM Personal Digital Assistance Desktop Computers & laptop logins Web Authentication Security Analysis Slide 15: STATE DIAGRAM : - Slide 16: 3D Password space size. 3D password distribution knowledge. SECURITY ANALYSIS : - Slide 17: Brute Force Attack. Well-Studied Attack. Shoulder Surfing Attack. ATTACKS AND COUNTER MEASURES : - Slide 18: 1.The user can decide his own authentication schemes. If he's comfortable with Recall and Recognition methods then he can choose the 3d authentication just used above. 2.The authentication can be improved since the un authorised persons will not interact with the same object as a legitimate user would. We can also include a timer .Higher the security higher the time. 3.The 3D environment can change according to users request. 4.It would be difficult to crack using regular techniques .Since all the algorithms follow steps to authenticate ,our project has no fixed number of steps .Hence to calculate all those possibilities and decipher them is not easy. 5.Can be used in critical areas such as Nuclear Reactors, Missile Guiding Systems etc. 6.Added with biometrics and card verification ,the scheme becomes almost unbreakable. CONCLUSION : - Slide 19:  X. Suo, Y. Zhu, and G. S. Owen, “Graphical passwords: A survey,” in Proc. 21st Annu. Compute. Security Appl. Conf., Dec. 5–9, 2005, pp. 463–472.  D. V. Klein, “Foiling the cracker: A survey of, and improvement to passwords security,” in Proc. USENIX Security Workshop, 1990, pp. 5–14.  NBC news, ATM Fraud: Banking on Your Money, Dateline Hidden Cameras Show Criminals Owning ATMs, Dec. 11, 2003. REFRENCES : - Slide 20: THANK U!!!