A novel JavaCard-based authentication system for secured transactions on the Internet

Abstract

This paper presents a novel authentication system, that will find applications on the Internet like e-commerce and areas where secure communication is mandatory. It consists of a set of authentication protocols-JavaCard authentication protocol (JCAP) and a secure crypto-module-random symmetric authentication module (RSAM). The JCAP is used to establish the session "key" and mutual authenticate the communicating principals. The "key" established has enhanced functions and acts as a set of parameters used in RSAM for a more secure symmetric cryptographic session to provide privacy and dynamic symmetric encryption algorithm operations. The encryption keys, and the length and sequence of messages will be different for each exchange of messages, making it almost impossible for the attacker to decrypt the message exchanged. JavaCard is used to enhance the security of the authentication session.