3 Level Authentication - TutorialsDuniya

TUTORIALSDUNIYA.
COM
3 Level Authentication
Software Engineering Project
Download FREE Software Engineering Projects for any

university student of BCA, MCA, B.Sc, M.Sc, B.Tech at
https://www.tutorialsduniya.com
If you find any error or mistake in this Software Engineering

project then report at abhishek@tutorialsduniya.com
Please Share these SE Projects with your Friends

Download FREE Software Engineering Projects from TutorialsDuniya.com
3 LEVEL AUTHENTICATION
omm
SOFTWARE ENGINEERING PROJECT
REPORT
cco
B. Sc. (H) Computer Science
a.
iy
un
slsD
aial
SUBMITTED BY:
orri
Rallapalli Nagarjun Sachin Kumar Shashikant Patel Yukti Kaushik

utot
16035500000 15035500000 15035500000 16035500000

TTu
Keshav Mahavidyalaya
(University of Delhi)

ACKNOWLEDGEMENT
omm
We have taken efforts in this project. However, it would not have been possible
without the kind support and help of many individuals. We would like to extend
our sincere thanks to all of them. We are highly indebted to TutorialsDuniya.Com
cco
for their guidance and constant supervision as well as for providing necessary
information regarding the project & also for their support in completing the
project.
a.
We would like to express our gratitude towards our teachers for their kind co-
iy
operation and encouragement which helped us in completion of this project.
A huge thanks and appreciations also go to the team members in developing the
project and people who have willingly helped us out with their abilities.
un
slsD
aial
orri
utot
TTu

ii
CERTIFICATE
omm
This is to certify that Software Engineering project report entitled “3 Level
cco
Authentication” is the work carried out by Rallapalli Nagarjun, Sachin Kumar,
Shashikant Patel and Yukti Kaushik, student of BSc(H) Computer Science 4th
Semester, Keshav Mahavidyalaya, University of Delhi under the supervision of
a.
TutorialsDuniya.com.
iy
This report has not been submitted to any other organization/institution for the
award of any other degree/diploma.
un
slsD
aial
Project Supervisor Teacher-In-Charge

orri
TutorialsDuniya.com TutorialsDuniya.com
utot
TTu
Principal
TutorialsDuniya.com

iii
ABSTRACT
The project is an authentication system that validates user for accessing
omm
the system only when they input correct password. The project involves
three levels of user authentication. There are varieties of password
systems available, many of which have failed due to bot attacks while
cco
few have sustained it but to a limit. In short, almost all the passwords
available today can be broken to a limit. Hence this project is aimed to
a.
achieve the highest security in authenticating users.
It contains three authentication phases having three different kinds of
iy
password system. The password difficulty increases with each level.
Users have to input correct password for successful login. Users would
un
be given privilege to set passwords according to their wish. The project
comprises of text password i.e. pass phrase, image based password and
OTP password for the three levels respectively. This way there would be
slsD
negligible chances of bot or anyone to crack passwords even if they have

cracked the first level or second level, it would be impossible to crack
the third one. Hence while creating the technology the emphasis was put
aial
on the use of innovative and nontraditional methods. Many users find

the most widespread text-based password systems unfriendly, so in the
orri
case of three level password we tried creating a simple user interface and
providing users with the best possible comfort in solving password.
utot
TTu

iv
TABLE OF CONTENTS
omm
1. Software Requirement Specification 1
1.1 Introduction 1
1.2 Overall Description 2
cco
1.3 External Interface Requirements 4
1.4 System Features 5
a.
1.5 Other Non-Functional Requirements 7
iy
Appendix A: Data Flow Diagrams 8
1.6. Data Dictionary 10

un
2.Size Estimation & Scheduling 13
2.1 Functional Point Analysis 13
2.2 Project Scheduling 17

slsD
3.Architectural Design 18
4.Risk Analysis 19
aial
4.1 RMMM plan 19
5.Implementation 21
orri
5.1 Coding 21
utot
5.2 Snapshots 28
6.Testing 32
TTu
7.User Manual 36
8.Conclusion 38
9.References 39

TutorialsDuniya.com
Download FREE Software Engineering Projects PDF for any

university student of BCA, MCA, B.Sc, B.Tech, M.Sc at
 3 Level Authentication  Airline Reservation System

 Banking Management System  Bus Route Enquiry System
 Car Showroom Dealership  Cricket Management System
 Criminal Record Management  E-Boutique
 Exam & Result Management  Health Care
 Hospital Management System  Online Bookstore
 Online Complaint Portal  Online Event Booking
 Online MetroCard Recharge  Online Missing Person Info
 Online Shopping  Online Shopping System
 Our First Home  Railway Reservation System
 Reality Show Management  Tour & Travel Management
 Smart City Traveller  Weather ForeCasting
Many more FREE Software Engineering Projects are available at

Please Share these SE projects with your Friends as well

List of Figures
1.Figure 1-Project View
omm
2.Figure 2-Project Implementation
3.Figure 3-Level 0 Data Flow Diagram
cco
4.Figure 4-Level 1 Data Flow Diagram
5. Figure 5:-Architectural Design Level 1
a.
6. Figure 6:-Architectural Design Level 2
iy
7. Figure 7:-Snapshot 1
un

slsD
12. Figure 12:-Code Module

aial
13. Figure 13:-Program Graph

orri
utot
TTu

vi
List of Tables
1. EI table
omm
2. EO table
3. ILF table
cco
4. EQ table
5. EIF table
a.
6. Combined Functional point table
iy
7. Gantt chart
8. RMMM 1
un
9. RMMM 2
10. Test case analysis

slsD
aial
orri
utot
TTu

1. Software Requirement Specification
1.1. Introduction
1.1.1. Purpose
omm
The purpose of product is to provide high level protection from thefts involving privacy of data.
In this fast advancing world, almost all the security systems are becoming obsolete. So,
something is needed to increase the level of security for our data, that’s why this application is
made.
cco
1.1.1 Document Conventions
The font used for headings are Times with BOLD function and font used for content part in a
a.
paragraph is Arial with italics function. In the paragraph body, special lines have been quoted
and highlighted with bold function.
Every heading is followed by its sub headings described by 1.1, 1.2.
iy
un
1.1.3. Intended Audience and Reading Suggestions
This document is made for all the kind of readers who intend to get a brief knowledge about
what this software is about.
The developers should directly jump to part 2, that is, Overall Description to part 5 of the
slsD
document, that is, Other Non - functional Requirements.

The project managers need to read all the parts from part 1 to part 6.
The marketing staff should read part 5 Other Non – functional Requirements.
The users should read part 2, that is, Overall Description.
The testers should read part 2, 3 and 4.
aial
The documentation writers should read part 2 to part 6.
1.1.4 Product Scope

orri
The main objective is to provide high level of security so that users can rely on the storage that
their data is secure. The more authentication methods get introduced in the near future, the more
utot
updates will be patched to the main software. “The users can rely on our database for saving
their sensitive data.” this is the prime objective of our software.
1.1.5 References
TTu
This SRS has been referred from SRS template provided by IEEE.

1.2 Overall Description

1.2.1 Product Perspective
Nowadays, many hackers hack into our system and can use our sensitive information for their
purpose as mostly we are relying upon text-based password system where our username
identifies us and password validates us. But this already existing technique has some weaknesses
omm
as more than one person can possess its knowledge at one time as the textual password can be
easily known by using brute force method and hence our identity can land into trouble with
people having venomous intent. Thus, along with text-based password two more techniques
have been providednamely picture based password and OTP generated password.
cco
a.
iy
un
slsD
aial
FIGURE 1: PROJECT OVERVIEW

orri
1.2.2 Product Functions

utot
 The user will be provided a sign-up page for the first time and sign in page after sign up
for that particular user.

TTu
When the user signs up, he will provide a mobile number/email on which an OTP system
will be used.
 Also, the user will select a group of photos for which we will assign a picture password.\
 Once the user successfully logs in, he will have access to his own previously saved data
or he can add more data to his online storage which is provided to each specific user (to a
certain limit).

SIGN UP
omm
cco
SIGN IN
a.
PICTURE
iy
un
TEXT PASSWORD OTP SERVICE
PASSWORD
slsD
aial
DATABASE
orri
utot
FIGURE 2: PROJECT IMPLEMENTATION

TTu

1.2.3 User Classes and Characteristics
This software can be used by any type of user. Everyone who wants to save their data from any
attacks and maintain their privacy, can use this software.
omm
1.2.4 Operating Environment
This software can operate on any hardware platform, as it is a web storage type of software.Any
cco
browser can be used to access this software. The browser should support JavaScript.
1.2.5 Design and Implementation Constraints
a.
This system limits to one user at a time.
iy
1.2.6 User Documentation
A video will be provided on how to sign up and initialize the user page for inputting the text
password, picture password and enabling OTP service.
un
A tutorial will be provided on how to upload your files on the cloud storage assigned to you.
Also, the directives that would be followed in case of “FORGOT PASSWORD” situation will
also be provided along with the user manual.
slsD
1.2.7 Assumptions and Dependencies
We are assuming that the OTP service provided is reliable and we can have no more than 1
person at a time accessing the storage.
aial
orri
1.3 External Interface Requirements

utot
1.3.1 User Interfaces
The interface used in each webpage is similar to the Gmail login page.
TTu
The browser on which the user runs the webpage should be preferably 1024 x 768 px.
The errors are generally shown in the text fields and the errors that are due to database non
connection or smtp server failure.
1.3.2 Hardware Interfaces
The interface uses PHP in backend for which a XAMPP server is being used.
And for sending OTP, the gmail SMTP server is being used.

The port for SMTP Gmail server is PORT 587 and for Apache server port 80 and MySQL port
3306. And PHPMyAdmin is the database used for MySQL queries.
1.3.3 Software Interfaces
omm
reCAPTCHA API used for CAPTCHA.
PHPMyAdmin used for MySQL server.
Gmail SMTP server for sending mails.
PHPMailer and SMTP classes used for OTP functionality.
cco
Refer to User Manual
1.3.4 Communications Interfaces
a.
The port for SMTP Gmail server is PORT 587 and for Apache server port 80 and MySQL port
3306. And PHPMyAdmin is the database used for MySQL queries.
iy
un
1.4 System Features
Refer to Brief Overview.
1.4.1 System Feature 1

slsD
LOGIN
1.4.1.1 Description and Priority
Priority: HIGH.
aial
The user types in his username and password that he had used for signup.
1.4.1.2 Stimulus/Response Sequences

orri
As the user hits the validate button in the login page, firstly the text field replies
whether the inputted data is correct or not.
utot
Then, user clicks the proceed button and proceeds to reCAPTCHA page.
TTu
1.4.1.3 Functional Requirements
REQ-1: The database should be connected.

REQ-2: The proceed button only works when correct data is validated

SIGN UP
omm
Priority: HIGH.
The user types in his username and password.
cco
As the user hits the validate button in the signup page, firstly the text field replies
whether the inputted data is correct or not.
Then, user clicks the proceed button and proceeds to reCAPTCHA page.
a.
iy
un
reCAPTCHA
slsD

Priority: LOW.
The user selects the pattern and clicks proceed.
aial

As the user hits the proceed button in the reCAPTCHA page, the pattern is cross
orri
checked and if correct,

Then, user clicks the proceedbutton and proceeds to OTP page.
utot

TTu
REQ-1: The internet should be connected

OTP

7
Priority: HIGH.
The user types in his username and then the OTP received.
omm
As the user hits the validate UID button in the OTP page, firstly the text field
replies whether the inputted data is correct or not.
Then the user receives the OTP on his email id and then hits validate button.
Then, user clicks the proceed button and proceeds to web page.
cco
a.
REQ-1: The internet should be connected.
iy
un
1.5 Other Nonfunctional Requirements
1.5.1 Performance Requirements
slsD
This software can be used by 5 users at a time with each user occupying 100 MB of space.
1.5.2 Safety Requirements
Safety of data is given prime importance in this software where users’ data is stored and can only
aial
be accessed by his/her permission by authenticating through various phases provided. There will
be no one accessing your storage other than yourself.
By providing OTP from the system only the intended user can achieve access onto his data
orri
allowing full safety to the data. Even if he/she by mistakenly shares the password of account then
also full rights of retrieving the data remains with him/her as other users will not be able to gain
access and will be blocked after several attempts.
utot
1.5.3 Security Requirements
The user can jump to another webpage on the site by changing the URL to the location file.
TTu
The user can use SQL injection to break into the database for UIDs.
The proceed button in some pages work without validating causing chaos.
1.5.4 Software Quality Attributes
The software is correct, flexible, maintainable, portable and reusable.

But it is not robust because it is vulnerable to attacks and flaws.

TutorialsDuniya.com




This software is limited to localhost that means the system of the project invoking the files,
therefore, it has very limited usage capability.
omm
cco
Appendix A: Analysis Models
a.
iy
un
slsD
aial
orri
utot
FIGURE 3: LEVEL 0 Data Flow Diagram

TTu

omm
cco
a.
iy
un
slsD
aial
orri
utot
TTu
FIGURE 4: LEVEL 1 Data Flow Diagram

10
1.6 Data Dictionary

1.6.1 Log in <=> User:
I USER TO LOGIN DATA FLOW
omm
(i)description:password
(ii)source:user
cco
(iii)destination:login process (database = "uid" )
(iv)type:user id ( combination of alphanumeric and special characters )
a.
II SUCCESSFUL LOGIN
iy
(i)description:access to user storage
(ii)source: storage
un
(iii)destination: user
(iv)type:session started ( on cross checking uid and password )

slsD
III TEXT PASSWORD
(i)description : user inputs text password

aial
(ii)source: user
(iii)destination : PICTURE PASSWORD

orri
(iv) type : alphanumeric password

utot
IV PICTURE PASSWORD
(i) description : user selects some specific pictures

TTu
(ii) source : user
(iii) destination : OTP
(iv) type : picture password ( picture size less than 1 MB each )

11
V OTP
(i) description: user inputs the OTP received by him/her
omm
(ii) source : user
(iii) destination : OTP
(iv) type : One Time Password (generally numeric )
cco
VI FORGOT PASSWORD
(i) description : user inputs the answer to the security question
a.
(ii) source : user
iy
(iii) destination : SIGN UP
(iv) type : alphanumeric

un
VII ON SUCCESS
(i)description : user gets access to his storage

slsD
(ii) source : database
(iii) destination : user
(iv) type : general media files

aial
VIII CROSS CHECKING

orri
(i)description:textpassword,otppassword,picture password are
cross checked by storing it in datastore for granting further access

utot
(ii)source:processes = text password + picture password + otp

TTu
(iii)destination:datastore:otp+text+picture
(iv)type:alphanumeric(text password) + numeric(otp) + image(picture password)

12
1.6.2 SIGN UP
I FIRST SESSION
(i) description : user inputs username
omm
(ii)source : user
(iii) destination :datastore
cco
II TEXT PASSWORD
a.
(i)description : user inputs password
(ii) source : user
iy
un
III PICTURE PASSWORD
(i)description : user selects pictures

slsD
(ii)source : user

aial
(iv) type : media files (size < 1 MB each)
IV OTP
orri
(i) description : user inputs his mobile number
(ii) source : user

utot

TTu
(iv) type : numeric (=10 digit number )
V INTERACTING WITH USER STORAGE
(i) description: user interacts with his storage
(ii) source : user

13
(iii) destination : storage
(iv) type : media files
omm
2. Size Estimation and Scheduling
cco
2.1 Size Estimation
a.
EQ TABLE
iy
Enquiry weighing factor weight description
eq1 D 6 User database interaction
un
eq2 M 4 3rd party OTP service
sum= 10
TABLE 1: EXTERNAL ENQUIRIES

slsD
aial
ILF TABLE
orri
Process Weighing factor weight description

p1 D 15 user database
utot
p2 D 15 login
p3 M 10 text password
TTu
p4 D 15 picture password
p5 S 7 OTP
p6 S 7 sign up
p7 M 10 forgot password
sum= 79
TABLE 2: INTERNAL LOGICAL FILES

14
omm
EI TABLE
Input Weighing factor Weight Description
i1 M 4 text password
i2 D 6 picture password
cco
i3 S 3 OTP
i4 S 3 Username
i5 D 6 Storing in database
a.
sum= 22
iy
un
TABLE 3: EXTERNAL INPUT
slsD
aial
EO TABLE
Output Weighing factor Weight Description
orri
o1 D 7 user storage access

text password to picture
o2 M 5 password
utot
o3 M 5 picture password to OTP

o4 D 7 Login
TTu
o5 S 4 signup
sum= 28
TABLE 4: EXTERNAL OUTPUT

15
EIF TABLE
omm
Process weighing factor weight Description
p1 M 7 3rd Party OTP
p2 S 5 User Storage
cco
sum= 12
TABLE 5: EXTERNAL INTERFACE FILES
a.
CAF (Cumulative Adjustment Factor)= 0.65 + (0.01 * 14
iy
*3) =1.07
un
slsD
aial
orri
Functional Unit Number Difficulty Level

EIF 2 12
utot
ILF 7 79
EO 5 28
TTu
EI 5 22
EQ 2 10
UFP= 151
TABLE 6: FUNCTION POINT ANALYSIS

16
FP (Function Point)= 1.07 * 151 = 161.57

LOC(Lines of code) = FP xLOC PER FP OF LANGUAGE =
omm
161.57 x 67 = 10,825.19
cco
EFFORT=1.4XL^0.93 = 1.4 X (10,825.19)^0.93 = 7909.57
DOCUMENTATION= 30.4 x (10,825.19)^0.9 = 129,974.66
a.
DURATION = 4.6 x (10,825.19)^0.26 = 51.488
iy
un
Assumptions taken during functional point analysis:
EI has taken input that is given to process/database

slsD
EO has given output that is the outcome of anyprocess/database
Processes are considered as ILF i.e. internal logical files

aial
orri
utot
TTu

17
2.2 Project Scheduling
omm
cco
a.
iy
un
slsD
aial
orri
utot
TABLE 7: Gantt chart

TTu

18
3. Architectural Design
Level 1
omm
cco
a.
iy
un
FIGURE 5: ARCHITECTURAL DESIGN LEVEL 1
slsD
Level 2
aial
orri
utot
TTu
FIGURE 6: ARCHITECTURAL DESIGN LEVEL 2

TutorialsDuniya.com




19
4. Risk Analysis
4.1Risk Mitigation, Monitoring and Management Plan
omm
Risk Mitigation, Monitoring and Management 1:
RISK INFORMATION SHEET
cco
Risk ID: DATE: Probability: Impact:
R01 10-02-2018 80% high
a.
DESCRIPTION
iy
Lack of training on tools required to build the project
REFINEMENT/CONTEXT:
un
1. Certain reusable components were developed by a third party with no
knowledge of internal design standards.
2. Certain reusable components have been implemented in a language that
is not supported on the target environment.
slsD
MITIGATION/MONITORING:
1. Contact third party to determine conformance with design standards.

2. Check to determine if language support can be acquired.
aial
MANAGEMENT/CONTINGENCY PLAN/TRIGGER
1. Risk estimation computed to be ₹5000. Allocate this amount within project

orri
contingency cost. Develop revised schedule assuming that 18 additional

components will have to be custom built; allocate staff accordingly.
Trigger: Mitigation steps unproductive as of 20/02/2018
utot
CURRENT STATUS:
TTu
05/03/2018: Mitigation steps initiated.
Originator : Yukti Kaushik Assigned : Rallapalli Nagarjun
TABLE 8: RMMM 1

20
Risk Mitigation, Monitoring and Management 2:
RISK INFORMATION SHEET

Risk ID: DATE: Probability: Impact:
omm
R02 15-02-2018 80% Very high
DESCRIPTION:
cco
Staff lacks experience in skills required to complete the project.
REFINEMENT/CONTEXT:
a.
3. More work load on the experienced people.
4. Time exceeded due to inexperienced staff.
iy
MITIGATION/MONITORING:
3. Providing required knowledge regarding the project.

un
4. Bring in skilled staff.
MANAGEMENT/CONTINGENCY PLAN/TRIGGER
slsD
2. Risk estimation computed to be ₹50000. Allocate this amount within

project contingency cost. Develop revised schedule assuming that 18
additional components will have to be custom built; allocate staff
accordingly.
Trigger: Mitigation steps unproductive as of 23/02/2018
aial
CURRENT STATUS:
orri
10/03/2018: Mitigation steps initiated.
Originator : Yukti Kaushik Assigned : Rallapalli Nagarjun

utot
TTu
TABLE 9:RMMM 2

21
5. Implementation of Module
5.1 Coding
omm
Otp.Php One Time Password in Project 3rd Module
<?php
// Import PHPMailer classes into the global namespace
cco
// These must be at the top of your script, not inside a function
require 'Exception.php';
a.
iy
//Load composer's autoloader
require 'PHPMailerAutoload.php';
un
functionsendOTP($email,$otp){
$mail = new PHPMailer(true); // Passing `true` enables exceptions

slsD
try {
//Server settings
$mail->SMTPDebug = 2; // Enable verbose debug output

aial
$mail->isSMTP(); // Set mailer to use SMTP
$mail->Host = 'smtp.gmail.com'; // Specify main and backup SMTP servers

orri
$mail->SMTPAuth = true; // Enable SMTP authentication

utot
$mail->Username = 'rallapallinagarjun16@gmail.com'; // SMTP username
$mail->Password = '16121998'; // SMTP password

TTu
// $mail->SMTPSecure = 'tls'; // Enable TLS encryption, `ssl` also accepted
$mail->Port = 25; // TCP port to connect to
// $message_body = "One Time Password for PHP login authentication is:<br/><br/>" . $otp;
//Recipients

22
$mail->setFrom('rallapallinagarjun16@gmail.com', '3-LEVEL Authentication');
$mail->addAddress($email); // Add a recipient
//Content
omm
// $mail->MsgHTML($message_body);
$mail->isHTML(true);
cco
// Set email format to HTML
$mail->Subject = 'OTP for login/signup';
a.
$mail->Body = "One Time Password for PHP login authentication is:<br/><br/>" . $otp;
$result1 = $mail->send();
iy
echo '<h1><center><b>Message has been sent</b></center></h1>';
return $result1;
un
}
catch (Exception $e) {

slsD
echo 'Message could not be sent. Mailer Error: ', $mail->ErrorInfo;
return 0;
}
aial
?>
orri
<?php
utot
$success=null;
$error_message = null;
TTu
$emailref = null;
$conn = mysqli_connect("localhost","root","","mydb");
if(isset($_POST["name1"]) && !empty($_POST["name1"])){
$result = mysqli_query($conn,"SELECT * FROM Baits WHERE email = '" .

$_POST['name1'] . "'");

23
$count1 = mysqli_num_rows($result);
if($count1>0){
//generate OTP
omm
$otp = rand(100000,999999);
//Send OTP
cco
$mail_status = sendOTP($_POST['name1'],$otp);
if($mail_status == 1){
a.
$result = mysqli_query($conn,"INSERT INTO
otp_expiry(otp,is_expired,create_at) VALUES ('".$otp."',0,'" . date("Y-m-d H:i:s")."')");
iy
//$current_id = mysqli_insert_id($conn);
// if(!empty($current_id)){
un
// $success =1;
// }
}
slsD
else{
$error_message = "error";
aial
}
orri
else{
$error_message = "Email is not present in the database Either Sign Up or get the
utot
hell out of here!";
}
TTu
else if(isset($_POST["OTPrec"]) && !empty($_POST["OTPrec"])){
$result2 = mysqli_query($conn,"SELECT * FROM otp_expiry WHERE otp =

'".$_POST["OTPrec"]."' AND is_expired<> 1");

24
$count = mysqli_num_rows($result2);
if($count>0){
omm
$result2 = mysqli_query($conn,"UPDATEotp_expiry SET is_expired = 1
WHERE otp = '".$_POST["OTPrec"]."'");
$error_message = "success";
cco
header("Location:C:\xampp\htdocs\home2.php");
a.
else{
$error_message = "Invalid OTP!";
iy
}
un
}
?>
slsD
<!DOCTYPE html>
<html>
<head>
aial
<title>OTP page</title>
orri
<link rel = "stylesheet" href = "OTP.css"/>
<link href = "https://fonts.googleapis.com/css?family=Open+Sans+Condensed:300" rel =

utot
"stylesheet" type = "text/css"/>
<link href = "https://fonts.googleapis.com/css?family=Open+Sans:300" rel = "stylesheet" type =

TTu
"text/css"/>
</head>
<body>
<center>
<div class = "base">

25
<div id = "logo">
<imgsrc = "logo.png" width = "118" height = "138"/>
</div>
omm
<div id = "info1">
Input your email for receiving OTP
cco
</div>
<div id = "info2">
a.
Enter OTP after submitting your email
</div>
iy
<div id = "form1">
<form action = "OTP.php" method = "POST">

un
<div id = "mailbox">
<input placeholder = " Enter your email"

slsD
type = "email" name = "name1" style="width:270px; height:42px; border:solid 1px #c2c4c6; font-
size:16px;
padding-left:8px" autofocus />

aial
</div>
<div id = "OTPfield">
orri
<input placeholder="Enter the OTP" name ="OTPrec" style="width:270px; height:42px; border:solid 1px
#c2c4c6; font-size:16px;
utot
padding-left:8px"/>
</div>
TTu
<div id = "passusercheck" style = "width:270px; height:42px; border:solid 1px #c2c4c6; font-size:16px;
padding-left:8px">
<?php
26

echo $error_message;
?>
</div>
<div>
omm
<input type ="submit" id="button1" value ="Validate Email" />
</div>
<div>
cco
<input type ="submit" id="button2" value ="Validate OTP" />
</div>
a.
<div id = "jump1">
iy
<button class = "button3" onclick="myFunction()" >
un
<span>
<a href ="#">Proceed</a>

slsD
</span>
</button>
aial
</div>
</div>
orri
<div id = "bottom">
utot
<p>© Designed by Yk<br></p>
</div>
TTu
</div>
</center>
<script>
27

functionmyFunction(){
var x = document.getElementById("jump1");
var y = "<?php echo $error_message; ?>";
if(y!="success"){
omm
if(x.style.display === "none"){
x.style.display ="block";
cco
else{
x.style.display = "none";
a.
}
iy
}
}
un
</script>
</body>
slsD
</html>
aial
orri
utot
TTu

TutorialsDuniya.com




5.2 Snapshots of Module29
omm
cco
a.
iy
un
Figure 7: Snapshot 1
slsD
aial
orri
utot
TTu

30
omm
cco
a.
iy Figure 9: Snapshot 3
un
slsD
aial
orri
utot
TTu

31
omm
cco
a.
iy
un
slsD
FIGURE 11: Snapshot 5

aial
orri
utot
TTu

32
6. Testing
Basis Path Testing Of theRecaptcha Module
omm
cco
a.
iy
un
slsD
Figure 12: Code module

aial
orri
utot
TTu

33
Program Graph of the above code:
omm
cco
a.
iy
un
slsD
aial
orri
utot
Figure 13: Program graph

TTu
Cyclomatic complexity of the given graph
VG = E – N + 2
VG = 23 – 21 +2

34
=4
No. of regions = 3 + 1
omm
=4
No. of predicate nodes = 3
cco
Cyclomatic complexity = Predicate nodes + 1 = 3+1 = 4
No. of independent nodes =
a.
 1-3 , ( 3,6) , (6,10) , 10-14 , 14-21
 1-3, (3,6), 6-10, 10 -14, 14-15-16-21
iy
 1-6, 6-10, 10-14, 14-20, 20-21
 1-14, 14-20 , 21
un
Which is equal to 4
No. of independent nodes = Cyclomatic complexity = 4

slsD
Test cases:
Path no. Input Expected Output Received output
aial
. 1-3 , ( 3,6) $_POST[‘g-recaptcha- $captcha != null $captcha != null

response’]
, (6,10) , 10- $captcha != null $captcha != null
orri
14 , 14-21 $captcha
Another file is opened Another file is opened
$responsekeys[‘success’]
utot
.1-3, (3,6),
TTu
$captcha != null $captcha != null

6-10, 10 - $_POST[‘g-recaptcha-
14, 14-15- response’] $captcha != null $captcha != null
16-21
$captcha You are a spammer You are a spammer

35
$_POST[‘g-recaptcha-
omm
response’]
$captcha != null
$captcha $captcha != null
.1-6, 6-10, Please check the captcha
10-14, 14- $responsekeys[‘success’] form Please check the captcha
cco
20, 20-21 exit form
exit
a.
iy
un
slsD
$_POST[‘g-recaptcha- $captcha != null $captcha != null

aial
response’]
$captcha
$captcha != null $captcha != null
orri
Another file is opened Another file is opened
utot
TTu
Table 10: Test case analysis

36
7.User Manual for the Project: 3 Level Authentication
omm
The project’s main objective is to provide three level authentication for the user to access a
webpage.
The homepage is used for first level which is login page to login and proceed to the next
authentication which is reCAPTCHA. The homepage has the link to the Sign Up page naming
cco
Create Account. For every page the user is directed to, he has to firstly validate his inputted
data. Then, after successful validation, the user has to click the proceed button. If the user clicks
the proceed button before the validation procedure, the proceed button will vanish and the user
a.
has to reload the page to again validate and proceed.
The validation procedure in the Sign Up procedure has the following possibilities:
iy
1. Invalid User ID
2. The user has been taken
un
3. The passwords inputted by the user don’t match
4. Fields are empty
The validation in the Login procedure has the following possibilities:
slsD
1. Invalid user credentials

2. Invalid Password
The page to which the login/signup page direct is the reCAPTCHA page. The user selects a
aial
pattern from the given images and then proceeds to the OTP page.
In the OTP page, the user has to firstly validate his/her email and then the user receives an email
orri
having 6 digit one time password and then the user inputs the OTP in the text field and then
proceeds to the webpage.
utot
When the email is validated, the CLIENT AND THE SERVER interaction is displayed behind
TTu
the text fields.
If the username is used previously in the database, it can’t be used again. Once OTP is generated
and used, it can’t be used again.
The project is working on localhost.
The SMTP protocol works on Port 25/Port 587.

37
Port 25 supports SSL/TLS encryption.
Some of the systems with enhanced security won’t be able to send the mail as the system will
block the unauthorized and unprotected access to that port.
omm
Port 587 doesn’t have TLS encryption so the mail server can work easily.
Mailing procedure is done by using SMTP.php and PHPMailer.php where a Gmail account is
used to send the emails in the backend. That Gmail id should give access to the less secure apps
cco
feature in Gmail or else the mailer won’t work.
Steps to be followed while signing up for a new account:-
1. Click on the link Create Account which will lead you to sign up page.
a.
2. Enter your valid email id in the id box provided
3. Enter your password in the box provided
iy
4. Validate your email
5. Then proceed further.
un
slsD
aial
orri
utot
TTu

38
8. Conclusion
omm
The delivered prototype of our software demonstrates how authentication can be
achieved by using three level protection/authentication. With this we can conclude
that our prototype can be used for security purposes by individuals and
cco
organizations in order to prevent their data from theft. Extending this model to
other resources will definitely increase the security level at its best.
a.
iy
un
slsD
aial
orri
utot
TTu

39
9. References
omm
1. https://www.tutorialsduniya.com
2. Google reCAPTCHA API available at Google.com
cco
3. github.com for PHPMailer and SMTP
4. php.net/manual
a.
5. https://www.tutorialsduniya.com
iy
un
slsD
aial
orri
utot
TTu

TutorialsDuniya.com




3 Level Authentication - TutorialsDuniya

Uploaded by

3 Level Authentication - TutorialsDuniya

Uploaded by

TUTORIALSDUNIYA.

Software Engineering Project

Download FREE Software Engineering Projects for any

If you find any error or mistake in this Software Engineering

Please Share these SE Projects with your Friends

Rallapalli Nagarjun Sachin Kumar Shashikant Patel Yukti Kaushik

16035500000 15035500000 15035500000 16035500000

Download FREE Software Engineering Projects from TutorialsDuniya.com

Download FREE Software Engineering Projects from TutorialsDuniya.com

Project Supervisor Teacher-In-Charge

Download FREE Software Engineering Projects from TutorialsDuniya.com

negligible chances of bot or anyone to crack passwords even if they have

on the use of innovative and nontraditional methods. Many users find

Download FREE Software Engineering Projects from TutorialsDuniya.com

1.2 Overall Description 2

1.4 System Features 5

1.6. Data Dictionary 10

2.2 Project Scheduling 17

4.1 RMMM plan 19

Download FREE Software Engineering Projects from TutorialsDuniya.com

Download FREE Software Engineering Projects PDF for any

 3 Level Authentication  Airline Reservation System

Many more FREE Software Engineering Projects are available at

Please Share these SE projects with your Friends as well

3.Figure 3-Level 0 Data Flow Diagram

5. Figure 5:-Architectural Design Level 1

10. Figure 10:-Snapshot 4

11. Figure 11:-Snapshot 5

12. Figure 12:-Code Module

13. Figure 13:-Program Graph

Download FREE Software Engineering Projects from TutorialsDuniya.com

10. Test case analysis

Download FREE Software Engineering Projects from TutorialsDuniya.com

1. Software Requirement Specification

document, that is, Other Non - functional Requirements.

The documentation writers should read part 2 to part 6.

1.1.4 Product Scope

Download FREE Software Engineering Projects from TutorialsDuniya.com

1.2 Overall Description

FIGURE 1: PROJECT OVERVIEW

1.2.2 Product Functions

Download FREE Software Engineering Projects from TutorialsDuniya.com

FIGURE 2: PROJECT IMPLEMENTATION

Download FREE Software Engineering Projects from TutorialsDuniya.com

1.2.3 User Classes and Characteristics

1.2.5 Design and Implementation Constraints

1.2.7 Assumptions and Dependencies

1.3 External Interface Requirements

1.3.1 User Interfaces

1.3.2 Hardware Interfaces

Download FREE Software Engineering Projects from TutorialsDuniya.com

1.3.3 Software Interfaces

1.3.4 Communications Interfaces

1.4.1 System Feature 1

1.4.1.2 Stimulus/Response Sequences

1.4.1.3 Functional Requirements

REQ-1: The database should be connected.

Download FREE Software Engineering Projects from TutorialsDuniya.com

1.4.2 System Feature 2

1.4.2.2 Stimulus/Response Sequences

1.4.3.1 Description and Priority

1.4.3.2 Stimulus/Response Sequences

checked and if correct,

1.4.3.3 Functional Requirements

REQ-1: The internet should be connected

1.4.4 System Feature 4

Download FREE Software Engineering Projects from TutorialsDuniya.com

1.4.4.2 Stimulus/Response Sequences

1.5.2 Safety Requirements

1.5.3 Security Requirements

1.5.4 Software Quality Attributes

The software is correct, flexible, maintainable, portable and reusable.

Download FREE Software Engineering Projects from TutorialsDuniya.com

Download FREE Software Engineering Projects PDF for any

 3 Level Authentication  Airline Reservation System

Many more FREE Software Engineering Projects are available at