A secure authentication system implementing industry-standard encryption and security practices for user authentication and data protection.
- Secure Password Storage: Implements salted password hashing using PBKDF2
- Symmetric Encryption: Secures sensitive user data using AES-256
- Data Integrity: Uses HMAC for verifying data authenticity
- Database Security: Prepared statements to prevent SQL injection
- Session Management: Secure token-based authentication
-
Prerequisites
# Python 3.x required python --version -
Installation
# Clone the repository git clone https://github.com/yourusername/SecureAuth.git cd SecureAuth # Create and activate virtual environment python -m venv SecureAuth source SecureAuth/bin/activate # On Windows: SecureAuth\Scripts\activate # Install dependencies pip install -r requirements.txt
-
Database Setup
- Configure MySQL (via XAMPP or standalone)
- Update database credentials in
main.py - Run the provided SQL scripts to create necessary tables
-
Run the Application
python main.py
For detailed setup instructions and configuration options, see:
-
Password Protection
- PBKDF2 with SHA-256
- Unique salt per user
- High iteration count for enhanced security
-
Data Encryption
- AES-256 in CBC mode
- Secure key generation
- Protected key storage
-
Integrity Verification
- HMAC-SHA256 for data authentication
- Protected against tampering
SecureAuth/
├── main.py
├── config/
│ └── settings.py
├── Models/
│ ├── user.py
|
|___Utils/
| |___encryption.py
| |
|
|
├── database/
│ └── models.py
└── Setup
- Fork the repository
- Create a feature branch (
git checkout -b feature/AmazingFeature) - Commit your changes (
git commit -m 'Add some AmazingFeature') - Push to the branch (
git push origin feature/AmazingFeature) - Open a Pull Request
Distributed under the MIT License. See LICENSE for more information.
mail : [email protected]
Project Link: https://github.com/thompson005/SecureAuth