Friday, March 31, 2023

CyberSecurity - New Tool - SecureOTP

    I have mentioned in the past of implementing very high cyber security standards. Pretty much the cyber security standards have been implemented and after much analysis the following bottlenecks were identified. The analysis has been performed based on the capabilities of the anonymous targeted hackers - R&AWMAAfia's equipment capabilities:

1) Possibility of OTP theft either OTP's received on Phone or OTP's received via EMail.

The need entering a OTP received on phone on a laptop or entering a OTP received on email in a laptop into an application on mobile. The OTP should NOT be displayed on screen. Instead the application would show XXXX - Copy/Transfer button.

With this use case identified a much needed tool for bridging this security loophole is needed.

I plan to develop this tool and release in the next few months. The tool would be developed using .Net MAUI. Lot of Operating Systems would be supported - iOS, Android, Windows, Mac. 

I am considering options such as communicating over bluetooth or local wifi - eliminating the need for server component.

In June 2022, I have wrote a blog post - An Architecture for Secure communication between two clients!. In this blog post, I have discussed an architecture for securely pairing two devices over the public internet without the need for any accounts. The architecture is like pairing of bluetooth devices over bluetooth, pairing of Netflix / Youtube with television but has few more steps for secure pairing and securely transferring data.

But, I don't want to develop the server component, because in this usecase the devices i.e laptop, mobile would be close enough and might be on the same wifi network. So, bluetooth, same wifi transfer would be appropriate. But the session specific public / private keypair generation for transferring data, pairing of devices part of the above mentioned architecture would still happen.

This would be developed along with WebVeta. And this would be completed almost in-time before the production release of WebVeta. I am thinking sometime around November 2023. This way, WebVeta production would be in a very secure environment and I am pretty much doing a thorough, holistic analysis of cyber security.

Thanks to great contributions by great people from around the world, the frameworks such as NIST, free courses and paid courses, documentation etc... have helped me in improving my knowledge of cyber security and figuring out ways to thwart the R&AWMAAfia hackers - who are violating human rights by hacking, privacy invasion by using mind reading equipment of invisible drones, doing identity distortion, identity theft, intellectual property theft.




I don’t have any fake aliases, nor any virtual aliases like the psycho spy R&AW traitors of India. NOT associated with the erra / yerra karan, kamalakar, diwakar, kareem, karan, erra / yerra sowmya, erra / yerra sowjanya, zinnabathuni sowjanya, bojja srinivas (was a friend and batchmate 1998 – 2002, not anymore), mukesh golla (was a friend and classmate 1998 – 2002, not anymore), erra sowmya, erra sowjanya, thota veera, uttam’s, bandhavi’s, bhattaru’s, thota’s, bojja’s, bhattaru’s or Arumilli srinivas / Arumilli uttam(may be they are part of a different Arumilli family – not my family). I don’t have any siblings by the name of Sowjanya or Sowmya, Srinivas, Uttam.


Mr. Kanti Kalyan Arumilli

B.Tech, M.B.A

Facebook

LinkedIn

Founder & CEO, Lead Full-Stack .Net developer

ALight Technology And Services Limited

Phone / SMS / WhatsApp on the following 3 numbers:

+91-789-362-6688, +1-480-347-6849, +44-07718-273-964

+44-33-3303-1284 (Preferred number if calling from U.K, No WhatsApp)

kantikalyan@gmail.com, kantikalyan@outlook.com, admin@alightservices.com, kantikalyan.arumilli@alightservices.com, KArumilli2020@student.hult.edu and 3 more rarely used email addresses – hardly once or twice a year.  

No comments:

Post a Comment