Authentication is one of the most crucial modules for any given system. With an increase in the need for secure environments, the authentication modules of systems are moving from traditional one-factor authentication (usually based on a static password) to multi-factor authentication. Two-factor authentication is a popular method being practiced for increasing security that using more than one of the options simultaneously during the authentication process. One-Time Password (OTP) is certainly one of the simplest, stronger and most popular forms of two-factor authentication for securing network access. A simple OTP algorithm can be implemented by any hardware manufacturer or software developer to create interoperable authentication devices and software agents. Kerberos is a popular security mechanism used by systems for network authentication and secure transmission of data. The Kerberos protocol provides a framework authenticating a client using the exchange of pre-authentication data. A key distribution center (KDC) distributes Kerberos tickets to authenticated users.
This paper describes the use of simulated Kerberos framework to carry out OTP authentication. Also, it allows OTP values to be used in the Kerberos pre-authentication in a manner that does not require the user's Kerberos password. In addition, it proposes a model which uses OTP algorithm to work with SIM cards that can send sensitive data over wireless connection in more safe, simple and secure manner with satisfying confidentialityand integrity. It shows that the system is designed to improve security by requesting something the user knows, along with something they have (Two-factor authentication).