| In this report, a multilayered approach for user authentication in mobile databases, by using the authentication schemes based on password, token and Kerberos, is proposed. Now-a-days due to the vast increase in the technical ability of the hackers and eavesdroppers, it is hard to keep a mobile transaction secure with traditional approaches of authentication. Authentication schemes of mobile databases should overcome the threats like impersonation, identity thefts, etc. Issues of traditional authentications schemes are considered in proposed approach. The concept of strong authentication which means providing multifactor authentication by combining the existing models is becoming familiar in this particular field. The proposed scheme provides strong authentication by using password and token based authentication for initial identity authentication and then uses modified Kerberos exchange protocol for communications between client and the server. |
