JIT DYNAMIC CRYPTOSYSTEM

Anntinu T J, Sherly K K

Abstract: Conventional cryptography systems use a static key or a pair of keys for the encryption and decryption process. It is known from the study of the authentication method that the dynamic 2-factor based methods are more secure than the static parameter based authentication method. Also in the static key based encryption technique the entire security is based on the secrecy of the key used. Since the computational power of computers are increasing the key length is also increasing, which in turn force us to record it somewhere which makes it vulnerable. Here arises the need for a dynamic 2-factor based encryption technique in which the keys are generated based on Just in Time (JIT) principle for the encryption and decryption process. Here we utilize the property of RSA method for the generation of the JIT dynamic key for encryption and decryption process using a mobile agent in Client-Server architecture. In this system both the encryption key and decryption key is generated by the mobile agent in association with the server. A random number generated in both mobile agent and the server using time and a secret parameter as its seed makes the JIT key different for different users at same time and different JIT key for same user at different time. This method provides dynamic nature to the key and protects our system from key compromise. This method also provides an inborn authentication scheme for the users in the system. In conventional RSA system there is a chance for key compromise by brute force attack, but in this system the RSA key changes for every encryption and decryption without the overhead of key generation which make the system reliable and robust.

Keywords: 2-FACTOR, JIT, RSA, Client-Server, Dynamic

DOI: https://doi.org/10.15623/ijret.2014.0313003