Background and Purpose: Identifying authenticity of vehicles one of the issues emphasized by the experts of numbering and plate changing units, and various reasons may change the authenticity of vehicles, which is unavoidable in some cases, according to the laws of the country. Changes in components of vehicles are examples of such a crimes. The purpose of current research is to identify damages of verifying authenticity of vehicles.Method: This research is an exploratory mixed method in terms of practical purpose. In qualitative part, the statistical population was interviews with the experts of traffic police headquarters using a purposeful sampling method, and quantitative part, statistical population was based numbering experts of Tehran province using a stratified method. qualitative part of the theme analysis method was used using MAXQDA2020 software quantitative part, confirmatory factor analysis was used, validate model obtained from the qualitative part, structural equation modeling was used using pls3 Smart confirmatory factor analysis software.Findings: The greatest effect of vehicle authentication pathology quantitative section related to the dimension of behavioral injuries with a value of 24.361, and then related to dimension of contextual injuries with a value of 17.753, finally, the least impact is related to dimension Structural damage with a value of 4.641 is in Results: With the increase in the number of vehicles and the progress science and technology, need to recognize the damage of authenticating vehicles control and monitor performance of drivers and owners of vehicles using specialized equipment in field of authenticating has become inevitable.  

Web application protection is today's most important battleground between the victim, intruder, and web service resource. User authentication tends to be critical when a legitimate user of the web application abruptly ends the contact while the session is still active, and an unauthorized user chooses the same session to gain access to the device. For many corporations, risk detection is still a problem. In other cases, it is a usual way of operating that provides the requisite protection to keep the product free of weaknesses. Using various types of software to identify di erent security vulnerabilities assists both developers and organizations in securely launching applications, saving time and money. Di erent combinations of tools have been seen to enhance protection in recent years, but it has not been possible to combine the types of tools available on the market until the writing of this report. This paper aims to clarify vulnerabilities in broken authentication and session management. It is worth noting that if the creator practices the preventive techniques outlined in this article, the chances of exploitation being discussed are reduced. This paper revealed that the most powerful ways to exploit the Broken Authentication and Session Management vulnerabilities of the web application in those domains are Session Miscon guration assault and Cracking/ Guessing Weak Passwords. Correspondingly included techniques to defend authentication and the most important is using a robust encryption system, setting password rules, and securing the session ID.

Nowadays contactless smart cards are extensively used in applications that need strong authentication and security feature protection. Among different cards from different companies, MIFARE DESFire cards are one of the most used cases. The hardware and software design in addition to implementation details of MIFARE DESFire cards are kept secret by their manufacturer. One of the important functions is authentication which usually its procedure is secret in cards.MIFARE DESFire EV3 is the fourth generation of the MIFARE DESFire products which supports integrity and confidential protected communication. DESFire EV3 is the latest addition of MIFARE DESFire family of smart card chipsets from NXP. This type of card is compatible with MIFARE DESFire D40, EV1, and EV2. The details of the authentication protocols in MIFARE DESFire EV3 card with three different secure messaging protocols are introduced in this paper. We use ProxMarak4 to obtain the details of authentication protocol of the DESFire cards as readers and a Custom special purpose board as a card.

The Session Initiation Protocol (SIP), which is becoming the de facto standard for the next-generation VoIP networks, is currently receiving much attention in many aspects. One aspect that was not deeply addressed in the original SIP is its authentication procedure. Apart from its security, an SIP authentication procedure should be efficient. This paper proposes a robust and efficient three-party SIP authentication protocol. In this protocol, the end users are authenticated with the proxy server in their domain using the registrar server. Compared to previous works, our proposed protocol is more efficient and secure. To support our protocol with a formal security proof, its model is constructed using High-Level Protocol Specification Language (HLPSL). The model is verified using the model checking tool, AVISPA, and the result confirms that the protocol is quite safe.