Now a days, The text password is the most standard form of user authentication on websites due to its convenience and ease. Though, users’ passwords are likely to be taken and compromised under different threats and vulnerabilities. Usual user uses text passwords for authentication which select while registering accounts on a website. Weak password is selected by the user and uses that among different websites causes domino effect. Additional, typing passwords into untrusted computers undergoes password thief threat. Anrival can launch several password stealing attacks to grab passwords, key loggers and malware. The identity of the user will be authenticated through cellular phone which is used to generate a one-time session password, then transmit the encrypted message through short message service. With the proposed procedure, a more profound client verification is performed without uncovering watchword to the untrusted PCs.