Abstract:
Client authentication has been a critical problem on the web. Currently web-sites use passwordbased authentication scheme which considered a week authentication scheme according to today challenges. Many studies show the need of new strong authentication scheme that uses two-factor authentication model to prevent identity theft and online fraud. Implementing a two-factor authentication system is usually expensive and requires especial hardware connected to the client’s machine which is unfeasible in web environment. In this paper we present a novel webauthentication scheme with two-factor authentication model by combining the use of biometric authentication approach and knowledge based authentication approach as two
authentication factors. The scheme we present in this paper is cost-effective, software only, reliable, and a natural choice for web-authentication.To test the accuracy and the performance of our scheme we built a prototype system for experiment purpose, our experiment reported a promising results.