Implementation of Password-based Key Derivation Function for Authentication Scheme in Patrolling System

Outsourced security guards are often used by building owners or companies to help them maintain security. Problems arise from complaints about how companies can monitor surveillance activities in real-time and reliably. Supervisors must be able to know with certainty who is the security guard on duty. Therefore, an authentication process to oversee the work of security officers is needed in the patrolling system. The authentication system required the security guards to come to the location to read the QR code on the display device. The QR code was dynamically and only a valid account in an android application could verify the codes. QR code information was generated using key derivation function based on shift schedule information and security guard account number. The authentication process used PBKDF2. The resulting system consisted of a QR code viewer device and an Android mobile application. The QR code displayed the information that was sent by the server. This information was been unreadable by humans and it changed periodically according to the shift schedule and who is in charge of the inspection location. Based on the active account, the Android application could verify whether the QR code is valid or not for the account. If valid, the system recorded that the location has been monitored by a valid security guard.