Abstract:
Authentication is a crucial process that verifies the identity of an individual or system seeking access to resources or services. Password-based authentication systems, which are the most common and widely used, can be complex, difficult to remember, and vulnerable to various attacks. Graphical passwords offer a more user-friendly alternative to text-based passwords and have been validated by software companies and psychology research. However, existing password authentication systems, including OAuth2.0, Google Auth, and Facebook Auth, have limitations, such as single-point failure, centralized architecture, privacy concerns, and resource-intensive computation systems. This paper proposes a decentralized platform, Visual-D-Auth, that leverages blockchain and IPFS technologies to provide secure and reliable access to users through a Decentralized Single Sign-On (DSSO) technique. The Visual-D-Auth system eliminates the need for remembering multiple usernames and passwords in a decentralized environment while providing improved security, user privacy, and convenience. The paper introduces a unique graphical password generation algorithm that generates highly secure passwords using a combination of images and a user-selected username. Finally, the Visual-D-Auth solutions address the most common weaknesses of graphical password systems, such as shoulder-surfing and smudge attacks, offering a more secure and user-friendly solution. Overall, this research presents a novel approach to authentication that could potentially revolutionize the way we authenticate access to resources and services.