Advertisement

Pen-Drive Based Password Management System for Online Accounts

  • Samruddhi PatilEmail author
  • Kumud Wasnik
  • Sudhir Bagade
Conference paper
Part of the Advances in Intelligent Systems and Computing book series (AISC, volume 755)

Abstract

This paper presents a system that manages user’s password using pen-drive as a key for storing and protecting it from attackers, hackers, and from loss. Nowadays users are using single or easy password for all website accounts because they can be easy to remember but it increases chances of attack, also user sometime uses single password for all accounts. Instead of remembering or using same passwords, in this system we use pen-drive to store password and login to online accounts. Pen-drive is popular for storage of different files like audio, text, data, and video. In our password management system, passwords are stored in a password-protected file which is saved in Pen-drive and retrieved by application. The application stores the password and corresponding URL temporarily on PC and use till pen-drive is connected to the PC. Our system can solve the password memorability problem for user and also protect password from various attacks. Our System addresses the security issues like Confidentiality, Integrity and Authentication because of two-level protections. In first level, password is stored on users own pen-drive and in second level, pen-drive is protected by password.

Keywords

Pen-drive Password manager Online account Security Password URL 

References

  1. 1.
    Wasnik, K., Patil, S.: A survey on existing password storage methods and their security. Int. J. Sci. Res. 2319–7064 (2017). ISSN (Online)Google Scholar
  2. 2.
    Ma, W., Campbell, J., Tran, D., Kleeman, D.: A conceptual framework for assessing password quality. Int. J. Comput. Sci. Netw. Secur. 7(1), 179–185 (2007)Google Scholar
  3. 3.
    Gaw, S., Felten, E.W.: Password management strategies for onlineaccounts. In Proceedings of the 2nd Symposium on Usable Privacy and Security (SOUPS),pp. 44–55. New York, NY, USA, ACM, July 2006Google Scholar
  4. 4.
    RoboForm Password Manager. http://www.roboform.com/
  5. 5.
  6. 6.
    Herzberg, A. Jbara, A.: Security and identification indicators for browsers against spoofing and phishing attacks. ACM Trans. Internet Technol 8(1–36) (2008). New York, NY, USAGoogle Scholar
  7. 7.
    Zhao, R., Yue, C., Sun, K.: A security analysis of two commercial browser and cloud-based password managers. BioMedCom (2013)Google Scholar
  8. 8.
    Gasti, P., Rasmussen, K.P.: On the security of password manager database formatsGoogle Scholar
  9. 9.
    Agholor, S., Sodiya, A.S., Akinwale, A. T., Adeniran, 0. J.: A secured mobile-based password manager. ISBN: 978-1-4673-7504-7©2016 IEEEGoogle Scholar
  10. 10.
    Fang, H., Aiqun, H., Shi, L., Li, T.: SESS: a security-enhanced secret storage scheme for password managers. 978-1-4673-7687-7/15/©2015 IEEEGoogle Scholar
  11. 11.
  12. 12.
    Ye, Z., Smith, S., Anthony, D.: “Trusted paths for browsers”, ACM Trans. Inf. Syst. Secur. 3, 153–186 (2005)CrossRefGoogle Scholar
  13. 13.
    Fukumitsu, M., Hasegawa, S., Iwazaki, S.-Y.: A proposal of a password manager satisfying security and usability. In: 2016 IEEE 30th International Conference on Advanced Information Networking and Applications (2016)Google Scholar
  14. 14.
    LastPass Password Manager. https://lastpass.com/

Copyright information

© Springer Nature Singapore Pte Ltd. 2019

Authors and Affiliations

  1. 1.UMITSNDT Women’s UniversityMumbaiIndia

Personalised recommendations