Abstract
This project builds a powerful two-factor authentication system to validate the user while they try to sign into a web application. It has a two-factor authentication system built with message digest 5 hashing on top of the reCaptcha from Google, which blocks the automated bots crashing the servers sending junk requests. Upon signing up in the system, the user is provided two options to get the OTP an email or phone number for the registration. When a registered user tries to login to the application, the MD5 hashing technique is applied on the login process where the user is prompted to enter the OTP and password both at the same time to login. The new OTP is generated and transmitted to the user device immediately after the user email/mobile number is given. As soon as the OTP is generated, an MD5 hashed text string is framed on the back-end along with the password and stored on a collection. This MD5 hashed text is compared for integrity with the user’s static password which has been obtained from the front-end. If the integrity fails, then the user will be unable to login considering the vulnerability. This system uses the google cloud platform where it uses java & spring as a back-end framework and HTML5, JavaScript for the front-end application presentation layer. It saves the data to a secured firebase platform hosted on google cloud.