[01] Sheikh Muhammad Saqib, Institute of Computing and information Technology, Gomal University, Dera Ismail Khan, Pakistan. [02] Abdur Rashid Khan, Institute of Computing and information Technology, Gomal University, Dera Ismail Khan, Pakistan. [03] Hamid M Masood Khan, Institute of Computing and information Technology, Gomal University, Dera Ismail Khan, Pakistan.

Password provides security from malicious users. When a user opens web page based profile such as email, online resume etc, then password is matched with already stored information on server and is stored in session variables. Now user can visit different web pages related to that particular profile. Loading of each and every new web page requires authentication. Instead of entering user name and password again and again, previously entered password is stored in session variables for further comparisons. On loading of each new web page, session variables are compared with server side information. There are number of users and each user profile has number of related web pages, so server remains busy all the time in mating of username and password. To reduce this workload of server and to ensure security related to session comparison with server information, authors suggested a proposed methodology KEY-INTERFACE to handle such issues. It provides only single time comparison with server side information resulting workload reduction.

Password, Security Issues, Session Variables, User Authentication

[01] PedroAdão, Protocolinsecuritywithafinitenumberofsessionsandacost-sensitiveguessingintruderisNP-complete, Theoretical Computer Science 538 (2014) 2–15, Elsevier [02] Computer Intruders: Detection and Prevention, http://eduscapes.com/tap/topic121.htm [03] Application and Session Variables, http://msdn.microsoft.com/en-us/library/ms952597.aspx [04] Yun Huang1, Zheng Huang2, Haoran Zhao3, Xuejia Lai4, A new One-time Password Method, International Conference on Electronic Engineering and Computer Science, 2013 [05] Computer Hope, http://www.computerhope.com/jargon/p/password.htm visit on 9/6/2014 [06] Biometric authentication, Anil K. Jain (2008), Scholarpedia visit on date 13-4-2015http://www.scholarpedia.org/article/Biometric_authentication. [07] Michael Zimmerman, BIOMETRICS AND USER AUTHENTICATION, SANS Institute 2002 [08] Seema Rao, Prof.K.J.Satoa, An Attendance Monitoring System Using Biometrics Authentication, International Journal of Advanced Research in Computer Science and Software Engineering, Volume 3, Issue 4, April 2013 [09] Jose Anand, T. G. Arul Flora, Anu Susan Philip, FINGER-VEIN BASED BIOMETRIC SECURITY SYSTEM, International Journal of Research in Engineering and Technology eISSN: 2319-1163 | pISSN: 2321-7308, Volume: 02 Issue: 12 | Dec-2013 [10] Session Variable Transformer Reference, visit on date: 13-4-15, http://www.mulesoft.org/documentation/display/current/Session+Variable+Transformer+Reference [11] Session Variables and Cookies, visit on date: 12-4-2015, http://www-01.ibm.com/support/knowledgecenter/SSBJG3_2.5.0/com.ibm.gen_appug.doc/c_gas_session_variables_cookies_001.htm?cp=SSBJG3_2.5.0%2F2-6-1-0-4.