Books

lOMoARcPSD|50853872
E Authentication Project Document
Computer Science (Vels Institute of Science, Technology and Advanced Studies)
Scan to open on Studocu
Studocu is not sponsored or endorsed by any college or university

Downloaded by Dheepak rajj (rajjdheepak@gmail.com)
lOMoARcPSD|50853872
E-AUTHENTICATION SYSTEM USING

QR CODE AND OTP
Main Project work submitted in partial fulfillment of the
requirements for the degree of
Master of Science in Computer Science
to the Thiruvalluvar University, Serkkadu, Vellore – 115
By
R. SHANTHI
Register No:40120P15014
Under the guidance of

Mr. G. PARTHIBAN., M.C.A., M.Phil., (Ph.D).,
Asst.prof in Computer Science
Arignar Anna Govt. Arts College
Villupuram – 605 602.
JUNE 2021-2022
ARIGNAR ANNA GOVT. ARTS COLLEGE

VILLUPURAM-605 602.

lOMoARcPSD|50853872
E-AUTHENTICATION SYSTEM USING

QR CODE AND OTP
Bonafide Work Done
By
R. SHANTHI
Register No: 40120P15014
Main Project work submitted in partial fulfillment of the

Requirements for the degree of
Master of Science in Computer Science
to the Arignar Anna Government Arts College, Villupuram.
Affiliated college from Thiruvalluvar University, Serkkadu,
Vellore – 115.
INTERNAL GUIDE HEAD OF THE DEPARTMENT
Submitted for the Viva-Vice Examination held on ______________
Internal Examiner External Examiner

lOMoARcPSD|50853872
ACKNOWLEDGEMENT
I praise and thank the almighty from the depth of my heart, for his
continuous source of strength, comfort and gracefulness in helping me to make
this project a great success.
I would take this opportunity to thank to our honourable, Principal

Dr.R.SIVAKUMAR M.Sc., M.Phil., Ph.D., C.C.G., F.M.S., F.I.S.A.G.,
M.I.A.H., M.M.E.A.I, M.M.A.I., F.I.A.S[S]., F.GGS., Arignar Anna
Government Arts College, Villupuram for giving her full support to complete
my project.
I wish to express my profound sense of gratitude to
Capt. V. SUNDARAVADIVELU, M.Sc., M.Phil., MCA.,PGDCA., (Ph.D).,Head of
the Department, Department of Computer Science, for Extending his support

and guidance in completion of this project.
I would like to extend my sincere thanks to my internal guide,
Mr.G. PARTHIBAN., M.C.A., M. Phil.,(Ph.D)., Asst. Professor in Arignar

Anna Govt. Arts College, for his Constant encouragement and valuable
guidance provided during the development of my project.
I also express my heartful thanks to My Parents and Friends and all the well
wishers who have encouraged me and all through the project.
R. SHANTHI

lOMoARcPSD|50853872
CHAPTER TITLE PAGE.NO
ABSTRACT
INTRODUCTION
1 1
1.1 Secure Computing
1.2
1.3 Working Condition
1.4 Benefits Of Secure Computing
2 SYSTEM REQUIREMENT 7
2.1 Hardware Requirements
2.2 Software Requirements

3 SYSTEM DESIGN 8
3.1 System Architecture
3.2 Data Flow Diagram
3.3 Student
3.4 Staff
4 DIAGRAMS 11
4.1 UML Diagrams
4.2 Use case Diagrams
4.3 Class Diagrams
4.4 Sequence Diagrams
4.5 Activity Diagrams

5 INPUT DESIGN AND OUTPUT 18
DESIGN
5.1 Input Design
5.2 Output Design

lOMoARcPSD|50853872
6 SOURCE CODE 21
6.1 Staff Home.jsp
6.2 Students login.jsp
6.3 Attendance Details.jsp
6.4 Attendance.jsp
6.5 Student Signin
6.6 Student Signup
6.7 Student Verify
6.8 QRCODE Extract
6.9 SQL Connection

7 IMPLEMENTATION 56
7.1 Modules
7.2 Modules Description
8 SCREENSHOTS 58
9 CONCLUSION 68
10 REFERENCES 69
ABSTRACT
In this project we develop E-Authentication System using QR code and

OTP for the Students Attendance System. The use of QR code-based

lOMoARcPSD|50853872
technologies and applications has become prevalent in recent years where QR

codes are accepted to be a practical and intriguing data representation /
processing mechanism amongst worldwide users. The aim of this study is to
design and implement an alternative two-factor identity authentication system
by using QR codes and to make the relevant mechanism and process that could
be more user-friendly and practical than one-time password mechanisms used
with similar purposes today. The proposed model in this project has been
designed in order to enable the verification and validation steps with several
security and networking options during the logon process. The model has been
implemented by developing a two-factor identity verification system where the
second factor is the user's email ID which can be accessed from PC or Mobile
device and a pseudo-randomly generated alphanumerical QR code which is
used as the one-time password token sent to the user via e-mail. The proposed
model has been developed using Java & MYSQL languages with symmetrical
and asymmetrical cryptography standards for database encryption / hashing and
network infrastructure and it has been tested as a prototype where promising
results are observed regarding the efficiency, speed and security requirements.
1.INTRODUCTION

lOMoARcPSD|50853872
1.1 Secure Computing?
Computer security (Also known as cyber security or IT Security)

is information security as applied to computers and networks. The field covers
all the processes and mechanisms by which computer-based equipment,
information and services are protected from unintended or unauthorized access,
change or destruction. Computer security also includes protection from
unplanned events and natural disasters. Otherwise, in the computer industry, the
term security -- or the phrase computer security -- refers to techniques for
ensuring that data stored in a computer cannot be read or compromised by any
individuals without authorization. Most computer security measures
involve data encryption and passwords. Data encryption is the translation of
data into a form that is unintelligible without a deciphering mechanism.
A password is a secret word or phrase that gives a user access to a
particular program or system.
1.2 Working conditions and basic needs in the secure computing:
If you don't take basic steps to protect your work computer, you put it and all
the information on it at risk. You can potentially compromise the operation of
other computers on your organization's network, or even the functioning of the
network as a whole.
1. Physical security:
Technical measures like login passwords, anti-virus are essential. (More about
those below) However, a secure physical space is the first and more important
line of defense.

lOMoARcPSD|50853872
Is the place you keep your workplace computer secure enough to prevent theft
or access to it while you are away? While the Security Department provides
coverage across the Medical center, it only takes seconds to steal a computer,
particularly a portable device like a laptop or a PDA. A computer should be
secured like any other valuable possession when you are not present.
Human threats are not the only concern. Computers can be compromised by
environmental mishaps (e.g., water, coffee) or physical trauma. Make sure the
physical location of your computer takes account of those risks as well.
2. Access passwords:
The University's networks and shared information systems are protected in part
by login credentials (user-IDs and passwords). Access passwords are also an
essential protection for personal computers in most circumstances. Offices are
usually open and shared spaces, so physical access to computers cannot be
completely controlled.
To protect your computer, you should consider setting passwords for

particularly sensitive applications resident on the computer (e.g., data analysis
software), if the software provides that capability.
3. Prying eye protection:
Because we deal with all facets of clinical, research, educational and

administrative data here on the medical campus, it is important to do everything
possible to minimize exposure of data to unauthorized individuals.
4. Anti-virus software:

lOMoARcPSD|50853872
Up-to-date, properly configured anti-virus software is essential. While we have

server-side anti-virus software on our network computers, you still need it on
the client side (your computer).
5. Firewalls:
Anti-virus products inspect files on your computer and in email. Firewall

software and hardware monitor communications between your computer and
the outside world. That is essential for any networked computer.
6. Software updates:
It is critical to keep software up to date, especially the operating system, anti-

virus and anti-spyware, email and browser software. The newest versions will
contain fixes for discovered vulnerabilities.Almost all anti-virus have automatic
update features (including SAV). Keeping the "signatures" (digital patterns) of
malicious software detectors up-to-date is essential for these products to be
effective.
7. Keep secure backups:
Even if you take all these security steps, bad things can still happen. Be
prepared for the worst by making backup copies of critical data, and keeping
those backup copies in a separate, secure location. For example, use
supplemental hard drives, CDs/DVDs, or flash drives to store critical, hard-to-
replace data.
8. Report problems:
If you believe that your computer or any data on it has been compromised, your
should make a information security incident report. That is required

lOMoARcPSD|50853872
by University policy for all data on our systems, and legally required for health,
education, financial and any other kind of record containing identifiable
personal information.
1.3 Benefits of secure computing:
 Protect yourself - Civil liability:

You may be held legally liable to compensate a third party should they
experience financial damage or distress as a result of their personal data
being stolen from you or leaked by you.
 Protect your credibility - Compliance:

You may require compliancy with the Data Protection Act, the FSA, SOX
or other regulatory standards. Each of these bodies stipulates that certain
measures be taken to protect the data on your network.
 Protect your reputation – Spam:

A common use for infected systems is to join them to a botnet (a collection
of infected machines which takes orders from a command server) and use
them to send out spam. This spam can be traced back to you, your server
could be blacklisted and you could be unable to send email.
 Protect your income - Competitive advantage:

There are a number of “hackers-for-hire” advertising their services on the
internet selling their skills in breaking into company’s servers to steal client
databases, proprietary software, merger and acquisition information,
personal detail set .

lOMoARcPSD|50853872
 Protect your business – Blackmail:

A seldom-reported source of income for “hackers” is to·break into your
server, change all your passwords and lock you out of it. The password is
then sold back to you. Note: the “hackers” may implant a backdoor
program on your server so that they can repeat the exercise at will.
 Protect your investment - Free storage:

Your server’s harddrive space is used (or sold on) to house the hacker's
video clips, music collections, pirated software or worse. Your server or
computer then becomes continuously slow and your internet connection
speeds deteriorate due to the number of people connecting to your server in
order to download the offered wares.
2. SYSTEM REQUIREMENT
2.1 HARDWARE REQUIREMENTS:

lOMoARcPSD|50853872
• System : Pentium IV 2.4 GHz.

• Hard Disk : 40 GB.
• Floppy Drive : 1.44 Mb.
• Monitor : 15 VGA Colour.
• Mouse : Logitech.
• Ram : 512 Mb.
2.2 SOFTWARE REQUIREMENTS:
• Operating system : - Windows XP/7.

• Coding Language : JAVA/J2EE
• Data Base : MYSQL
3. SYSTEM DESIGN
3.1 SYSTEM ARCHITECTURE:

lOMoARcPSD|50853872
STUDENT
Register
Get OTP and DATABASE

Verify OTP and
QR-Code
View A琀琀endance QR-Code
Details
View Student
Details
STAFF
3.2 DATA FLOW DIAGRAM:
1. The DFD is also called as bubble chart. It is a simple graphical formalism

that can be used to represent a system in terms of input data to the system,
various processing carried out on this data, and the output data is
generated by this system.
2. The data flow diagram (DFD) is one of the most important modeling
tools. It is used to model the system components. These components are
the system process, the data used by the process, an external entity that
interacts with the system and the information flows in the system.
3. DFD shows how the information moves through the system and how it is
modified by a series of transformations. It is a graphical technique that
depicts information flow and the transformations that are applied as data
moves from input to output.

lOMoARcPSD|50853872
4. DFD is also known as bubble chart. A DFD may be used to represent a

system at any level of abstraction. DFD may be partitioned into levels
that represent increasing information flow and functional detail.
3.3 Student:
StudentLogin
Yes Approve
No Unauthorized
user
Get OTP and QR-Code
Verify OTP and QR-Code
View A琀琀endance Details
End process
3.4 Staff:

lOMoARcPSD|50853872
Sta昀昀 Login
Yes Approve
No Unauthorized
user
View Student Details
View A琀琀endance
View Student Login Time
End process
4.DIAGRAMS

lOMoARcPSD|50853872
4.1 UML DIAGRAMS
UML stands for Unified Modeling Language. UML is a standardized

general-purpose modeling language in the field of object-oriented software
engineering. The standard is managed, and was created by, the Object
Management Group.
The goal is for UML to become a common language for creating models
of object oriented computer software. In its current form UML is comprised of
two major components: a Meta-model and a notation. In the future, some form
of method or process may also be added to; or associated with, UML.
The Unified Modeling Language is a standard language for specifying,
Visualization, Constructing and documenting the artifacts of software system,
as well as for business modeling and other non-software systems.
The UML represents a collection of best engineering practices that have
proven successful in the modeling of large and complex systems.
The UML is a very important part of developing objects oriented
software and the software development process. The UML uses mostly
graphical notations to express the design of software projects.
GOALS:
The Primary goals in the design of the UML are as follows:
1. Provide users a ready-to-use, expressive visual modeling Language so
that they can develop and exchange meaningful models.
2. Provide extendibility and specialization mechanisms to extend the core
concepts.
3. Be independent of particular programming languages and development
process.
4. Provide a formal basis for understanding the modeling language.
5. Encourage the growth of OO tools market.

lOMoARcPSD|50853872
6. Support higher level development concepts such as collaborations,

frameworks, patterns and components.
7. Integrate best practices.
4.2 USE CASE DIAGRAM:
A use case diagram in the Unified Modeling Language (UML) is a type

of behavioral diagram defined by and created from a Use-case analysis. Its
purpose is to present a graphical overview of the functionality provided by a
system in terms of actors, their goals (represented as use cases), and any
dependencies between those use cases. The main purpose of a use case diagram
is to show what system functions are performed for which actor. Roles of the
actors in the system can be depicted.
Register

lOMoARcPSD|50853872
Login
Get OTP and QR-Code
Student Sta昀昀
View A琀琀endance
Logout

lOMoARcPSD|50853872
4.3 CLASS DIAGRAM:
In software engineering, a class diagram in the Unified Modeling Language

(UML) is a type of static structure diagram that describes the structure of a
system by showing the system's classes, their attributes, operations (or
methods), and the relationships among the classes. It explains which class
contains information.
Sta昀昀
Student
Login
Login
View Student Details ()

Get OTP and QR-Code ()
View A琀琀endance Details ()
Verify OTP and QR-Code ()
View Student Login Time ()
View A琀琀endance Details ()
4.4 SEQUENCE DIAGRAM:

lOMoARcPSD|50853872
A sequence diagram in Unified Modeling Language (UML) is a kind of

interaction diagram that shows how processes operate with one another and in
what order. It is a construct of a Message Sequence Chart. Sequence diagrams
are sometimes called event diagrams, event scenarios, and timing diagrams.
SERVICE
Student Sta昀昀
Login
Get OTP and QR-Code

lOMoARcPSD|50853872
DATA BASE
4.5 ACTIVITY DIAGRAM:
Activity diagrams are graphical representations of workflows of stepwise

activities and actions with support for choice, iteration and concurrency. In the
Unified Modeling Language, activity diagrams can be used to describe the
business and operational step-by-step workflows of components in a system. An
activity diagram shows the overall flow of control.
Start
lOMoARcPSD|50853872
Student Sta昀昀
LOGIN LOGIN
Get OTP and QR-Code, View students details,

Verify OTP and QR-Code, View a琀琀endance details,
View a琀琀endance details. View student login 琀椀me.
5. INPUT DESIGN AND OUTPUT DESIGN

5.1 INPUT DESIGN

lOMoARcPSD|50853872
The input design is the link between the information system and the user. It
comprises the developing specification and procedures for data preparation and
those steps are necessary to put transaction data in to a usable form for
processing can be achieved by inspecting the computer to read data from a
written or printed document or it can occur by having people keying the data
directly into the system. The design of input focuses on controlling the amount
of input required, controlling the errors, avoiding delay, avoiding extra steps
and keeping the process simple. The input is designed in such a way so that it
provides security and ease of use with retaining the privacy. Input Design
considered the following things:
 What data should be given as input?

 How the data should be arranged or coded?
 The dialog to guide the operating personnel in providing input.
 Methods for preparing input validations and steps to follow when error
occur.
OBJECTIVES
1. Input Design is the process of converting a user-oriented description of the

input into a computer-based system. This design is important to avoid errors in
the data input process and show the correct direction to the management for
getting correct information from the computerized system.
2. It is achieved by creating user-friendly screens for the data entry to handle

large volume of data. The goal of designing input is to make data entry easier
and to be free from errors. The data entry screen is designed in such a way that
all the data manipulates can be performed. It also provides record viewing
facilities.

lOMoARcPSD|50853872
3. When the data is entered it will check for its validity. Data can be entered
with the help of screens. Appropriate messages are provided as when needed so
that the user will not be in maize of instant. Thus the objective of input design
is to create an input layout that is easy to follow
5.2 OUTPUT DESIGN
A quality output is one, which meets the requirements of the end user and
presents the information clearly. In any system results of processing are
communicated to the users and to other system through outputs. In output
design it is determined how the information is to be displaced for immediate
need and also the hard copy output. It is the most important and direct source
information to the user. Efficient and intelligent output design improves the
system’s relationship to help user decision-making.
1. Designing computer output should proceed in an organized, well thought out

manner; the right output must be developed while ensuring that each output
element is designed so that people will find the system can use easily and
effectively. When analysis design computer output, they should Identify the
specific output that is needed to meet the requirements.
2. Select methods for presenting information.
3. Create document, report, or other formats that contain information produced

by the system.
The output form of an information system should accomplish one or more of the
following objectives.
 Convey information about past activities, current status or projections of

the

lOMoARcPSD|50853872
 Future.
 Signal important events, opportunities, problems, or warnings.
 Trigger an action.
 Confirm an action.
6.SOURCE CODE:

lOMoARcPSD|50853872
6.1 Staff_home.jsp
<%--
Document : index
Created on : 19 May, 2021, 10:44:56 AM
Author : JAVA-JP
--%>
<%@page contentType="text/html" pageEncoding="UTF-8"%>
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8" />

<title>E Authentication Using QR-Code</title>
<link rel="stylesheet" href="css/media.css" type="text/css" />
<link href='https://fonts.googleapis.com/css?family=Oswald:400,700,300'
rel='stylesheet' type='text/css'>
</head>
<%
if (request.getParameter("Success") != null) {
%>
<script>alert('Login Success');</script>

lOMoARcPSD|50853872
<% }
%>
<body>

<div class="DesignHolder">

<div class="LayoutFrame">

<header>
<div class="Center">
<div class="site-logo">
</div>
<div id="mobile_sec">
<div class="mobile"><i class="fa fa-bars"></i><i class="fa

fa-times"></i></div>
<div class="menumobile">

<nav class="Navigation">
<ul>
<li class="active">
<a href="Staff_Home.jsp">Home</a>

lOMoARcPSD|50853872
<span class="menu-item-bg"></span>
</li>
<li>
<a href="student_details.jsp">Students</a>
</li>
<li>
<a href="attendance_details.jsp">Attendance</a>
</li>
<li>
<a href="index.jsp">Logout</a>
</li>
</ul>
</nav>

</div>
</div>
<div class="clear"></div>

lOMoARcPSD|50853872
</div>
</header>


<div class="Banner_sec" id="home">

<div class="bannerside">
<div class="ce">
<br>
<center><h1 style="color: white;font-weight: 600">E-Authentication System

with QR Code & OTP</h1></center>
</div>


</div>

</div>

<script type="text/javascript" src="js/jquery-1.11.0.min.js"></script>
<script type="text/javascript" src="js/jquery.sudoSlider.min.js"></script>

lOMoARcPSD|50853872
<script type="text/javascript" src="js/global.js"></script>
<script type="text/javascript" src="js/modernizr.js"></script>
</body>
</html>
6.2 Student_Login.jsp
<%--
Document : index
Created on : 19 May, 2021, 10:44:56 AM
Author : JAVA-JP
--%>
<!DOCTYPE html>
<html lang="en">
<head>


<%

lOMoARcPSD|50853872
%>
<% }
%>
<body>

<header>
</div>

<ul>

lOMoARcPSD|50853872
<li class="active">
</li>
<li>
</li>
<li>
</li>
<li>
</li>
</ul>
</div>


lOMoARcPSD|50853872

<div id="Container">
</body>
</html>
6.3 Attendance_detail.jsp
<%--
Document : index
Created on : 19 May, 2021, 10:44:56 AM
Author : JAVA-JP
--%
<!DOCTYPE html>
<html lang="en">
<head>


lOMoARcPSD|50853872
<header>
</div>
<div class="mobile"><i class="fa fa-bars"></i><i class="fa fa-

times"></i></div>
<ul>
<li class="active">
</li>
<li>

lOMoARcPSD|50853872
</li>
<div class="ce">
<br>
<center><h1 style="color: white;font-weight: 600">
E-Authentication System with QR Code & OTP</h1></center>
</div>

</div>
</div>
6.4 Attendance.jsp
<%--
Document : index

lOMoARcPSD|50853872
Created on : 19 May, 2021, 10:44:56 AM
Author : JAVA-JP
--%>
<!DOCTYPE html>
<html lang="en">
<head>

<meta name="viewport" content="width=device-width, initial-scale=1,

maximum-scale=1">

<link rel="stylesheet" href="css/theme.css" type="text/css" />
<link rel="stylesheet" href="css/font-awesome.min.css" type="text/css" />
<linkhref='https://fonts.googleapis.com/css?family=Oswald:400,700,300'
</head>
<%

lOMoARcPSD|50853872
%>
<% }
%>
<body>

<header>
</div>


lOMoARcPSD|50853872
<ul>
<li class="active">
</li>
<li>
</body>
</html>
6.5 Student_detail.jsp
<%--
Document : index
Created on : 6 May, 2022, 10:44:56 AM
Author : JAVA-JP
--%>

lOMoARcPSD|50853872
<!DOCTYPE html>
<html lang="en">
<head>


maximum-scale=1">
<link href='https://fonts.googleapis.com/css?
family=Open+Sans:400,300,600,600italic,400italic,800,700' rel='stylesheet'
type='text/css'>
</head>
<%
%>

lOMoARcPSD|50853872
<% }
%>
<body>

<header>
</div>

</div>

</div>


lOMoARcPSD|50853872
</div>

</div>

<div id="loader-wrapper">
<div id="loader"></div>
<div class="loader-section section-left"></div>
<div class="loader-section section-right"></div>
</div>
</body>
</html>
Student_signin.jsp
<%--
Document : index
Created on : 06 May, 2022, 10:44:56 AM

lOMoARcPSD|50853872
Author : JAVA-JP
--%>
<!DOCTYPE html>
<html lang="en">
<head>


maximum-scale=1">
<link
</head>
<%
%>

lOMoARcPSD|50853872
<% }
%>
<body>


<li class="active">
span class="menu-item-bg"></span>
</li>
<li>
</li>
</div>

lOMoARcPSD|50853872
</body>
</html>
Student_signup.jsp
<%--
Document : index
Created on : 19 May, 2021, 10:44:56 AM
Author : JAVA-JP
--%>
<!DOCTYPE html>
<html lang="en">
<head>


lOMoARcPSD|50853872

maximum-scale=1">
</div>

</div>
</div>

lOMoARcPSD|50853872
</body>
</html>
Student_verify.jsp
<%--
Document : index
Created on : 19 May, 2021, 10:44:56 AM
Author : JAVA-JP
--%>
<!DOCTYPE html>
<html lang="en">
<head>


maximum-scale=1">

lOMoARcPSD|50853872
type='text/css'>
</head>
<%
%>
<% }
%>
<body>

</div>

lOMoARcPSD|50853872
</body>
</html>
QRCodeExtract.java
<%--
Document : index
Created on : 19 May, 2021, 10:44:56 AM
Author : JAVA-JP
--%>
<!DOCTYPE html>
<html lang="en">
<head>


maximum-scale=1">

lOMoARcPSD|50853872
type='text/css'>
</head>
<%
%>
<% }
%>
<body>


lOMoARcPSD|50853872
<header>
</div>

<ul>
<li class="active">
</li>
<li>
</li>
<li>

lOMoARcPSD|50853872
</li>
<li>
</li>
</ul>
</nav>

</div>
</div>
</div>
</header>


<div class="Banner_sec" id="home">


lOMoARcPSD|50853872
<div class="ce">
<br>
<center><h1 style="color: white;font-weight: 600">E-Authentication System

with QR Code & OTP</h1></center>
</div>

</div>
</div>

<div class="About_sec" id="about">

lOMoARcPSD|50853872
</div>
</body>
</html>
Student_register.java
package Action;
import java.io.IOException;
import java.io.PrintWriter;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
/**
* @author JAVA-JP

lOMoARcPSD|50853872
*/
public class Staff extends HttpServlet {
/**
* Processes requests for both HTTP <code>GET</code> and

<code>POST</code>
* methods.
* @param request servlet request
* @param response servlet response
* @throws ServletException if a servlet-specific error occurs
* @throws IOException if an I/O error occurs
*/
protected void processRequest(HttpServletRequest request,

HttpServletResponse response)
throws ServletException, IOException {
response.setContentType("text/html;charset=UTF-8");
try (PrintWriter out = response.getWriter()) {
/* TODO output your page here. You may use following sample code. */
String name = request.getParameter("name");
String pass = request.getParameter("pass");

System.out.println("=======================================" +
name + pass);

lOMoARcPSD|50853872
if (name.equalsIgnoreCase("staff") && pass.equalsIgnoreCase("staff"))

{
response.sendRedirect("Staff_Home.jsp?Success");
} else {
response.sendRedirect("Staff_login.jsp?Failed");
} catch (Exception ex) {
SQLConnection.java
/*
* To change this license header, choose License Headers in Project Properties.
* To change this template file, choose Tools | Templates
* and open the template in the editor.
*/
package Action;
import java.io.IOException;
import java.io.PrintWriter;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServlet;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

lOMoARcPSD|50853872
/**
* @author JAVA-JP
*/
public class Staff extends HttpServlet {
/**
* Processes requests for both HTTP <code>GET</code> and

<code>POST</code>
* methods.
* @param request servlet request
* @param response servlet response
*/
protected void processRequest(HttpServletRequest request,

HttpServletResponse response)
throws ServletException, IOException {
response.setContentType("text/html;charset=UTF-8");
try (PrintWriter out = response.getWriter()) {
/* TODO output your page here. You may use following sample code. */
String name = request.getParameter("name");
String pass = request.getParameter("pass");

lOMoARcPSD|50853872
System.out.println("=======================================" +
name + pass);
if (name.equalsIgnoreCase("staff") && pass.equalsIgnoreCase("staff"))

{
response.sendRedirect("Staff_Home.jsp?Success");
} else {
response.sendRedirect("Staff_login.jsp?Failed");
} catch (Exception ex) {
Mail.java
/*
* To change this license header, choose License Headers in Project Properties.
* To change this template file, choose Tools | Templates
* and open the template in the editor.
*/
package Networks;
/**
* @author Lenovo
*/

lOMoARcPSD|50853872
import java.util.Properties;
import javax.mail.Message;
import javax.mail.MessagingException;
import javax.mail.PasswordAuthentication;
import javax.mail.Session;
import javax.mail.Transport;
import javax.mail.internet.InternetAddress;
import javax.mail.internet.MimeMessage;
public class Mail {
public static boolean secretMail(String msg, String name, String email) {
Properties props = new Properties();
props.put("mail.smtp.host", "smtp.gmail.com");
props.put("mail.smtp.socketFactory.port", "465");
props.put("mail.smtp.socketFactory.class",
"javax.net.ssl.SSLSocketFactory");
props.put("mail.smtp.auth", "true");
props.put("mail.smtp.port", "465");
// Assuming you are sending email from localhost
Session session = Session.getDefaultInstance(props,
new javax.mail.Authenticator() {

lOMoARcPSD|50853872
protected PasswordAuthentication getPasswordAuthentication() {
return
new PasswordAuthentication("kpsmgokikumar@gmail.com", "goki100108");
});
System.out.println("Message" + msg);
try {
Message message = new MimeMessage(session);
message.setFrom(new InternetAddress(name));
message.setRecipients(Message.RecipientType.TO,
InternetAddress.parse(email));
message.setSubject("CLOUD SERVER");
message.setText(""+msg);
Transport.send(message);
System.out.println("Done");
return true;
} catch (MessagingException e) {
System.out.println(e);
e.printStackTrace();
return false;

lOMoARcPSD|50853872
// throw new RuntimeException(e);

lOMoARcPSD|50853872
7. IMPLEMENTATION
7.1 MODULES:
 QR-Code Generation
 One Time Password (OTP)
 Student
 Staff
7.2 MODULES DESCRIPTION:
QR-Code Generation:
In this module, QR code is generated in backend using zxing-javase jar file
and stored on the student system. Student need to verify the QR Code using QR
code extractor to validate the authorized student.
One Time Password (OTP):

In this module, One-time password only valid for single use and
involves two party mode which is client and server to utilized OTP
software or hardware to generate and validate the password, then system
will send an OTP in the form of E-mail on the registered mail address which
was provided by the student at the time of registration. One-time password is a
unique password generated for a specific timestamp. This ensures that a
username or password combination cannot be used second time. Usually the
user’s login name remains unchanged, and the OTP changes for each login.
Hence for each session the user will be validated with the new OTP. One-time
passwords are a form for providing strong authentication, and offer more
effective security to corporate networks, online bank accounts and other
systems containing confidential data.

lOMoARcPSD|50853872
Student:
After student passes the authentication process using OTP and QR code, then
the student attendance will be registered to the database.
Staff:
In this module, Staff can access student details and also can view student
attendance.

lOMoARcPSD|50853872
8. SCREENSHOTS

lOMoARcPSD|50853872

lOMoARcPSD|50853872

lOMoARcPSD|50853872

lOMoARcPSD|50853872

lOMoARcPSD|50853872

lOMoARcPSD|50853872

lOMoARcPSD|50853872

lOMoARcPSD|50853872

lOMoARcPSD|50853872

lOMoARcPSD|50853872
9.CONCLUSION
This project concludes that there are so many possibilities for QR Code‟s use in
different areas for authentication and to provide security and lot more are yet to
be explored. In many countries, QR codes are used in most of the commercial
market items. Essentially, QR codes are a convenient way to add the virtual to
the physical to provide useful content, often at the time of need. QR codes are a
low threshold technology, easy to use and implement and it’s cheap. QR Code
has various applications in numerous fields. Student Attendance system which
involves high security transactions are made even more highly protected using
QR codes .OTP distribution is made accessible by authenticated users with the
help of QR codes.

lOMoARcPSD|50853872
Future Enhancement:
As a Future Enhancement, this project can be developed using Android

Application so the generation of the QR code and storing process is reduced and
also receiving the OTP can be made directly to the Android App instead of the
email so the application is more easily simplified to the users.
10. REFERENCES
[1] Mohammad Mannan, P. C. Van Oorschot, “Security and Usability: The Gap
in Real-World Online Banking”, NSPW‟07, North Conway, NH, USA, Sep. 18-
21, 2007.
[2] antiphishinggroup, “Phishing Activity Trends Report”,from:

http://www.antiphishing.org, Dec. 2008.
[3] Sang-Il Cho, hoonjae Lee, Hyo-Taek Lim, Sang-Gon Lee, “OTP
Authentication Protocol Using Stream Cipher with Clock-Counter”, October,
2009.
[4] Jean-Daniel Aussel, “Smart Cards and Digital Identity”, Telektronikk 3/4.
2007. ISSN 0085-7130.
[5] Jose Rouillard, “Contextual QR Codes”, Proceedidngs of the Third

International Multi-Conference on Computing in the Global Information
Technology (ICCCGI2008), Athens, Greece, July 27-Augst 1, 2008.

lOMoARcPSD|50853872
[6] IETF RFC 4226, HOTP: An HMAC-Based One-Time Password Algorithm,

Dec. 2005,
[7] ISO/IEC 16022:2000 – Information Technology – International Symbology

Specification – Data Matrix, 2000.
[8] ISO/IEC 18004:2000 – Information Technology – Automatic Identification

and Data Capture Techniques – BarCode Symbology – QR Code, 2000.
[9] Ohbuchi, E., Hanaizumi., H., Hock, L.A, “Barcode Readers using the
Camera Device in Mobile Phones”, in Proc. of 2004 International Conference
on Cyberworlds, pp.260-265, 2004.
[10] Reilly, D., Smolyn, G. and Chen, H., “Toward fluid, mobile and ubiquitous
interaction with paper using recursive 2D barcodes”, Pervasive Mobile
Interaction Devices 2007 (PerMID2007), workshop at Pervasive 2007, Toronto,
Canada, 2007.

Books

Uploaded by

Document Informationclick to expand document informationUploaded

Document Informationclick to expand document information

Copyright:

Available Formats

Books

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Books

Uploaded by

Copyright:

Available Formats

lOMoARcPSD|50853872

E Authentication Project Document

Computer Science (Vels Institute of Science, Technology and Advanced Studies)

Scan to open on Studocu

Studocu is not sponsored or endorsed by any college or university

E-AUTHENTICATION SYSTEM USING

to the Thiruvalluvar University, Serkkadu, Vellore – 115

Under the guidance of

ARIGNAR ANNA GOVT. ARTS COLLEGE

Downloaded by Dheepak rajj (rajjdheepak@gmail.com)

E-AUTHENTICATION SYSTEM USING

Bonafide Work Done

Main Project work submitted in partial fulfillment of the

Master of Science in Computer Science

to the Arignar Anna Government Arts College, Villupuram.

Affiliated college from Thiruvalluvar University, Serkkadu,

INTERNAL GUIDE HEAD OF THE DEPARTMENT

Submitted for the Viva-Vice Examination held on ______________

Internal Examiner External Examiner

Downloaded by Dheepak rajj (rajjdheepak@gmail.com)

I would take this opportunity to thank to our honourable, Principal

the Department, Department of Computer Science, for Extending his support

I would like to extend my sincere thanks to my internal guide,

Mr.G. PARTHIBAN., M.C.A., M. Phil.,(Ph.D)., Asst. Professor in Arignar

Downloaded by Dheepak rajj (rajjdheepak@gmail.com)

CHAPTER TITLE PAGE.NO

1.4 Benefits Of Secure Computing

2.1 Hardware Requirements

2.2 Software Requirements

3.1 System Architecture

3.2 Data Flow Diagram

4.1 UML Diagrams

4.2 Use case Diagrams

4.3 Class Diagrams

4.4 Sequence Diagrams

4.5 Activity Diagrams

5.1 Input Design

5.2 Output Design

Downloaded by Dheepak rajj (rajjdheepak@gmail.com)

6.1 Staff Home.jsp

6.2 Students login.jsp

6.3 Attendance Details.jsp

6.5 Student Signin

6.6 Student Signup

6.7 Student Verify

6.8 QRCODE Extract

6.9 SQL Connection

7.2 Modules Description

In this project we develop E-Authentication System using QR code and

Downloaded by Dheepak rajj (rajjdheepak@gmail.com)

technologies and applications has become prevalent in recent years where QR

Downloaded by Dheepak rajj (rajjdheepak@gmail.com)

1.1 Secure Computing?

Computer security (Also known as cyber security or IT Security)

1.2 Working conditions and basic needs in the secure computing:

Downloaded by Dheepak rajj (rajjdheepak@gmail.com)

To protect your computer, you should consider setting passwords for

3. Prying eye protection: