Browsing by Author "SULOCHANA, G. G. D."

Now showing 1 - 2 of 2

Open Access
Blockchain–AI–Geolocation Integrated Architecture for Mobile Identity and OTP Verification
(Multidisciplinary Digital Publishing Institute (MDPI), 2025-11-23) SULOCHANA, G. G. D.; De Silva, D.I
One-Time Passwords (OTPs) are a core component of multi-factor authentication in banking, e-commerce, and digital platforms. However, conventional delivery channels such as SMS and email are increasingly vulnerable to SIM-swap fraud, phishing, spoofing, and session hijacking. This study proposes an end-to-end mobile authentication architecture that integrates a permissioned Hyperledger Fabric blockchain for tamper-evident identity management, an AI-driven risk engine for behavioral and SIM-swap anomaly detection, Zero-Knowledge Proofs (ZKPs) for privacy-preserving verification, and geolocation-bound OTP validation for contextual assurance. Hyperledger Fabric is selected for its permissioned governance, configurable endorsement policies, and deterministic chaincode execution, which together support regulatory compliance and high throughput without the overhead of cryptocurrency. The system is implemented as a set of modular microservices that combine encrypted off-chain storage with on-chain hash references and smart-contract–enforced policies for geofencing and privacy protection. Experimental results show sub-0.5 s total verification latency (including ZKP overhead), approximately 850 transactions per second throughput under an OR-endorsement policy, and an F1-score of 0.88 for SIM-swap detection. Collectively, these findings demonstrate a scalable, privacy-centric, and interoperable solution that strengthens OTP-based authentication while preserving user confidentiality, operational transparency, and regulatory compliance across mobile network operators.
Open Access
Enhancing OTP Security with Private Blockchain, Geolocation And AI: A Decentralized and PrivacyPreserving Mobile Identity Authentication Framework
(Sri Lanka Institute of Information Technology, 2025-12) SULOCHANA, G. G. D.
One-Time Password (OTP) authentication is an important tool in protecting online banking, financial services, and online platforms. Nevertheless, the classical OTP systems, which are often based on centralized provision of SMS or email, are becoming susceptible to advanced cyberattacks, including SIM swap fraud, phishing, session jacking, and device spoofing. This study provides an in-depth mobile identity authentication system that would increase the security of OTP by combining the use of private blockchain, artificial intelligence (AI), and contextual verification through geolocation. The framework uses Hyperledger Fabric to decentralize identity verification and user privacy is ensured by a hybrid on-chain/off-chain data model, which is backed by smart contracts. Anomaly detection models based on AI and trained on behavioral patterns of SIM usages and previously known fraud cases have an accuracy rate of 85% when it comes to detecting realtime attacks of SIM swapping. Geolocation authentication, a geo-hashing method-based approach, is a further development of contextual trust by authenticating OTP requests only within defined and trusted geographic areas with an accuracy of 90 percent. Besides that, the system also engages in decentralized Know-Your-Customer (KYC) verification, which can guarantee privacypreserving mobile identity management. It developed a full-fledged prototype that was tested showing the performance of less than 500 milliseconds latency, high transaction throughput, and proper fraud detection. The APIs that are based on microservices are flexible and interoperable with mobile network operators (MNOs) and service providers. With a combination of these technologies, the framework can augment the reliability and security of the OTP-based authentication considerably. This work describes the severe shortcomings of existing centralized OTPs and a scalable and privacy-sensitive way to provide mobile and digital identity ecosystems in the future