International Journal of Advanced Engineering Research and Technology (IJAERT) 45

Volume 4 Issue 3, March 2016, ISSN No.: 2348 8190

ATM SHOULDER-SURFING RESISTANT PIN ENTRY BY USING

BASE PIN AND BASE TEXT
1

M. Ishwarya Niranjana, 2S.Amsaveni, 3N.Revathi

1Assistant Professor, 2UG scholar, 3 UG Scholar

1, 2, 3

Pollachi Institute of Engineering and Technology

1, 2, 3
Poosaripatti

ABSTRACT
The main aim of this system is to develop a secure ATM
in future. In general, all the keypad based authentication
system having several possibilities of password
identification by means of shoulder movements.
Shoulder-surfing is an attack on password authentication
that has frequently been hard to defeat. This problem has
come up with a new solution by following two types of
proposal idea one is designing shuffled Automated Teller
Machine keypad which displays the shuffled texts in the
Display which confuses person who standing near you to
guess the password. Another one is to develop the GSM
application between the user and Automated Teller
Machine counter for communicating a password via the
wireless medium. If someone tries to input the old
password got by shoulder surfing a message containing
the location of ATM and the ATM shutter will be closed.
Keywords: GSM, Embedded C, RF-ID card reader,
Microcontroller.

1. INTRODUCTION
The Microcontroller based secure pin entry method
is mainly developed for the prevention of theft of the
ATM card and to control the usage of the ATM card by
unauthorized person. The additional feature of this
project is that no transaction can be done without the
knowledge of the respective card holder. The main
softwares that are using in this project is embedded C.
This system can be implemented in all the sectors where
the ATM card is using like shopping, money transaction,
and online payments. Whenever the RF-ID Reader
detects an active tag it generates a particular frequency
digital signals and give these signals to the
microcontroller whenever the microcontroller receives
these digital signals from the RF-ID reader it will check
for the list of mobile number that has been associated
with the card frequency. Next the controller will generate
a pin number of four digits and send this pin number to
the embedded c program. Each time whenever a
transaction has to be done the pin number that are
generating in the microcontroller will be different GSM
modem that has been connected with it and will give

command to particular mobile Embedded C program in

the microcontroller will give command to the transaction
and the GSM will generate another message that ask the
card holder to enter the amount that the user wants to
withdraw from the ATM machine. Then the ATM
machine will if the entered pin number is wrong the card
will get blocked and the doors of the ATM centre will
get locked.

2. EXISTING METHOD
Security in ATM network is necessary because ATM
is widespread and many areas such as financial or
medical applications, network administration, etc.
Require very sensitive handling of most important
committee in developing and enforcing new standard
concerning ATM, introduced the ATM security
specification the transmitted data. Therefore the ATM
forum, the most important committee in developing and
enforcing new standard concerning ATM, introduced the
ATM security specification. The specification contains
mechanism to protect transmitted data in the user- and
the control plane etc. for example existing system have
drawbacks over the present system (Fingerprint
Verification of ATM Security System by Using
Biometric and Hybridization)[5]Thermal identification is
used to detect the fingerprint.

3. DEVELOPED METHOD
In our developed system whenever the transaction
has to be done, once the card is inserted inside the ATM
machine a massage is received to the mobile phone of
the actual card holder with a pin number of four digit.
This number is entered in the ATM machine using 4*4
keypad. It moves on to the next level of money
transaction asking for the money withdrawal. After the
transaction is over it display the balance amount in the
account. In the scenario where the password doesnt
match the card would be blocked and the door will be
closed.
3.1 HARDWARE REQUIREMENT
GSM Modem
Microcontroller

www.ijaert.org

International Journal of Advanced Engineering Research and Technology (IJAERT) 46

Volume 4 Issue 3, March 2016, ISSN No.: 2348 8190

RFID Reader
LCD Display
Keypad

kHz for signal transmitting and receiving side. It is used

as an ATM card.

3.2 SOFTWARE REQUIREMENT

Embedded c

4. BLOCK DIAGRAM
4.1 POWER SUPPLY
A 230v, 50Hz single phase AC power supply is
given to a step down transformer to get supply. This
voltage is converted to DC voltage using a Bridge
Rectifier. The converted pulsating DC voltage is filtered
by a 2200uf capacitor and then given to 7805 voltage
regulator to obtain constant 5v supply. This 5v supply is
given to all the components in the circuit. A RC time
constant circuit is added to discharge all
the capacitor quickly. A power supply sometimes known
as a power supply unit or PSU is a device or system that
supplies electrical or other types of energy to an output
load or group of loads. The term is most commonly
applied to electrical energy supplies, less often to
mechanical ones, and rarely to others.
POWER
SUPPLY

4.4 GSM TECHNOLOGY

The Modem is designed with RS232 Level
converter circuitry, which allows you to directly
interface PC Serial port .The baud rate can be
configurable from 9600-115200 through AT command.
Initially Modem is in Auto baud mode. This GSM/GPRS
RS232 Modem is having internal TCP/IP stack to enable
you to connect with internet via GPRS. A standard GSM
modem is used here for the sending and receiving of the
message. The operating frequency of the GSM modem
using here is 900MHz.

LCD
DISPLAY
MICRO

RFID
READER

CONTROLLER
(MSP430G2553)

SHUTTER
CONTROL

MAX 232
RFID TAG
(AS ATM
CARD)

4.3 MICROCONTROLLER UNIT

The Texas Instruments (TI) MSP430G2553
family of processors are low power 16 bit devices. They
are marketed at low power applications such as battery
devices, however in spite of this they contain a
sophisticated processor core and depending upon the
model, a useful array of integrated peripherals. TI
produces a set of microcontrollers based around a core
16 bit CPU as shown in Fig1. Different members of the
family include different peripherals and different
amounts of memory. They all include a JTAG interface.
(JTAG stands for Joint Test Action Group and in this
context represents a standardized interface to the
microcontroller that can be used for control and
monitoring during program or system testing and
debugging). Product designers choose the particular
family member that best suits their application, generally
speaking, cost and power consumption increases with
sophistication.

GSM

Fig.1: Block Diagram

4.2 RF-ID CARDREADER
Radio frequency identification (RFID), an
automatic recognition technology employing wireless
communication, has recently drawn much attention.
RFID which are electronic tags that employ RFID
technologies, can be broadly classified into passive and
active types of tags. Implementation and usage of the
RFID reader module is straight forward. The RFID
Reader Module is Controlled with a single TTL-Level
active-low ENABLE pin. When the/ENABLE pin is
pulled LOW, the module will enter its active state and
enable the antenna to interrogate for tags. The current
consumption of the module will increase dramatically
when the module is active. RFID reader frequency is 125

4.5 LCD DISPLAY

Alphanumeric displays are used in a wide range of
applications, including palmtop computers, word
processors, photocopiers, point of sale terminals, medical
instruments, cellular phones, etc. The 16 x 2 intelligent
alphanumeric dot matrix display is capable of displaying
224 different characters and symbols.
This booklet
provides all the technical specifications for connecting
the unit, which requires a single power supply (+5V)

5. RANDOM PIN NUMBER GENERATION

By using the random pin number generation
technique, each time when the transaction occurs a new
pin number will be generated by the microcontroller. The
embedded c coding done on the microcontroller helps
to make this. By this each time the pin number generated

www.ijaert.org

International Journal of Advanced Engineering Research and Technology (IJAERT) 47

Volume 4 Issue 3, March 2016, ISSN No.: 2348 8190

will be entirely different from the previous one its helps

to prevent the misuse of the ATM cart. This randomly
generated is used for the transaction process in the ATM.

6. EMBEDDED C
The embedded c Energia coding is used in the
microcontroller for the random password generation
during the transaction. Each time the password generated
will be entirely different from the previous one. It is
low-power signal in microcontroller Energies currently
supports several TI devices. Energia is based on Arduino
and the Wiring framework and includes an Integrated
Development Environment (IDE) that is based on
Processing.

Fig.2: Photograph of serial monitor

7. CONCLUSION
The progress in science &technology is a non-stop
process. New things and new technology are being
invented. As the technology grows day by day, we can
imagine about the future in which thing we may occupy
every place. The proposed system based on MSP430
microcontroller is found to be more compact, user friendly
and less complex, which can readily be used in order to
perform several tedious and repetitive tasks. Though it is
designed keeping in mind about the need for security
purpose, it extended for other purposes such as industrial
& research applications. Due to the probability of
Embedded technology and GSM technology made this
project(ATM SHOULDER SURFING RESISTANT PIN
ENTRY BY USING BASE PIN AND BASE TEXT) a
fully software controlled with less hardware circuit.

8. FUTURE WORK
In this paper, we proposed a new PIN entry scheme
that achieves a good balance between security and
usability from the perspective of response time and user

interface design. Our analysis shows that, our scheme is

resilient to shoulder-surng, given that the attacker has
limited capability in recording the login process. In
addition, unlike previous challenge response protocols, our
scheme requires only one response per digit/position of the
PIN, and thus excels in real-time response. Finally, we
discussed a few methods for improving the usability of our
scheme and showed two sample designs.

REFERENCE
[1] Antovski, L. and Gusev,M.(2003) A pin-Entry
Method Resilient Against Shoulder Surfing, vol. 04,
pp. 236-245.
[2] Avinash Kumar Ojha April, June(2015), ATM
Security using Fingerprint
Recognition
MCA
Department, Mumbai University, Maharashtra, India
Volume 5, Issue
[3] P. Golle and D. Wagner May (2007). Cryptanalysis of
a cognitive authentication scheme (extended abstract). In
Proc. of the IEEE Symposium on Security and Privacy
(S&P2007), pages 6670, Oakland, California, USA, IEEE
Computer Society.
[4] M.Kumar, T.Garnkel, D.Boneh, and T.Winograd July
(2007). Reducing shoulder-surfing by using gaze-based
password entry. In Proc.of the 3rd Symposium on Usable
Privacy and Security (SOUPS2007), Pittsburgh, PA, USA.
[5] Pramila D. Kamble, Dr.Bharti W. Gawali November
(2012). Fingerprint Verification of ATM Security System
by Using
Biometric and Hybridization
Dr.Babasaheb
Ambedkar
Marathwada
University
Aurangabad 431004 (MS) India International Journal of
Scientific and Research Publications, Volume 2, Issue 11,
1 ISSN 2250-3153.
[6] Hossein Reza Babaei, Ofentse Molalapata and AbdulHay Akbar Pandor (2012) Face Recognition Application
for Automatic Teller Machines (ATM), Faculty of
Information
and
Communication
Technology,
Limkokwing University of Creative Technology,
Cyberjaya, Malaysia International Conference on
Information and Knowledge Management (ICIKM 2012)
IPCSIT vol.45
[7] Kande Archana, Dr.A.Govardhan October (2013)
Enhance the Security in the ATM System with
Multimodal Biometrics International Journal of
Advanced Research in Computer Science and Software
Engineering in JNTU Hyderabad Volume 3, Issue 10
[8] Rajeswari Cherukuri, Raghavendra rao Kanchi (2014),
Design and development of a project-based embedded
system laboratory using PIC 18F25K20, American
Journal of Embedded Systems and Applications, Vol.2,
no.3, pp. 21-28,

www.ijaert.org