International Journal of Research

Two Server Password only authenticated key exchange protocol is most secure technique. It avoids dictionary attack and other threats. By using two servers it is possibility that one of server may shut down due to some reason. So system will collapse. two-server password-authenticated key exchange (PAKE) protocol, a client splits its password and stores two shares of its password in the two servers, respectively, and the two servers then cooperate to authenticate the client without knowing the password of the client. In case one server is compromised by an adversary, the password of the client is required to remain secure. Fashionable this newspaper this contemporary binary compilers that transmute somewhat binary get-together security protocol to a binary waitperson technique fashionable the groundwork of the uniqueness founded cryptography, named protocol. We suggestion conventions which achieve unwritten authorization. Our calculation of recollection, communication is going to provide the system which uses the encryption and collectively AES (Advance encryption standard) algorithm. And also uses the diffeehellman for key exchange. We are going to provide the solution for SQL_INJECTION attack which is commonly happens on the database. The proposed scheme is a password-only system in the sense that it requires no public key cryptosystem and, no PKI. In the given authentication schema we also use SMS integration API for two step verification like Gmail, it will provide the additional security to end user.