System for Authentication Using Digital Signature Technique

Abstract

Information technology has changed the way of dealing with business activities in corporate, private and government organizations, which needs the sharing of data through net. The sharing of data causes the threats to the data at storage level or to the data in transit, causing the breach of Integrity, concidentiality and authentication. As authentication is the important aspect of security issues, techniques of authentication are required to be analyzed to suit the application. The shortcoming of traditional technology of ink and paper necessitates in devising the way to authenticate the identity of business partner. Crytography and PENOP techniques are popular for authentication of electronic documents. PENOP technique needs the high-end infrastructure at both ends and is not applicable for the identified area. In this thesis, digital signature technique, which is an application of cryptography, has been applied to authenticate the documents of Excise and Taxatation Department Punjab. One of the familiar technology for authentication of electronic documents is public key cryptography, which uses two keys. One is secret key (private key), which is known to the owner only, and the second is public key, which is known to all. The corresponding public key can only decrypt message encrypted with private key. The proposed work uses 64 bit long secret and public key and needs 2 64 iteration to decode the key, which is very difficult for the intruder to decode. RSA and DSS are two algorithms of public key cryptography to create/verify the digital signature from the message. Therefore, both the algorithms have been analyzed and compared. The execution to generate the digital signature using RSA algorithm is an exponential function of private and public key. Therefore, execution time is very high to compute the digital signature and not suitable for real time applications. DSS algorithm in faster as it is straight function of private and public keys but it needs to share six parameters along the partner which is not feasible for the intended application. Therefore, a new model of digital signature has been formulated, which is very fast and needs only one key (public key) to share. this algorithm fulfills the requirement of the application under consideration i.e. authentication of documents at ICCs of the Excise and Texation Department, Punjab. The proposed algorithm is applicable if the message is maintained in the form of tables of the DBMS system only. The environment used is Window-NT/Oracle.