An improved OTP grid authentication scheme email-based using middle-square for disaster management system

Abstract

Disaster is an attempt to control or access the system without legal/valid permission and proper authorization protocol from legitimate entity. Nowadays, most organizations managed to save records in an online database transmitted over unpredictable network. To gain access to the system it is better if proper authentication be placed because it may affect the organization operation and sensitive information may be at risk (like early warning notification, casualty monitoring, initial and post assessment, rescue operation, response recovery, etc) if system has been compromised. This paper introduced a new scheme of one time password (OTP) email-based authentication and improved the authentication scheme using middle square technique to protect and secure confidential information for disaster management system. The One-Time Password has been recognized by many organizations as a breakthrough to two-factor authentication technique. It solves the shortcomings of the traditional username/password authentication. The OTP generates the initial seed based from the combination of several parameters like string of characters, numbers, date, time and weather data (humidity and temperature). The values generated changes overtime upon login registration as it extract location weather data producing an approximately 91 possible values or 4,095 possible combinations. The application has primary components namely: about, signup and login. It authenticates the user up to three (3) login attempts only then follows the redirection process. This scheme improved the security, protection and confidence level of the user as it uses a randomized generation of OTP codes sent through secured email account that is free from brute force, dictionary attack, insider attack, and key-logger attacks.