Enhanced Security System For Web Application

Enhanced security System for Web Application

Abstract

Many web applications provide secondary authentication methods, i.e., secret questions (or password recovery questions), to reset the account password when a user’s login fails. However, the answers to many such secret questions can be easily guessed by an acquaintance or exposed to a stranger that has access to public online tools (e.g., online social networks); moreover, a user may forget her/his answers long after creating the secret questions. Today’s prevalence of technology has granted us new opportunities to observe and understand how the personal data collected by  apps can help create personalized secret questions without violating the users’ privacy concerns. In this paper, we present a set of secret questions and own questions on basic of people’s applications usage. The secret questions have to be generated by the server and own questions have to generate by the user according to their long term historic data and real time incidents that has occurred in user’s life for better security. If any incident that occurred in he/she life never forgot that incidents. So he/she can easily remember answers related to those secret or own questions. Whenever they give correct answers then only they can login into their applications.