Compromising databases of servers of a login system result in successful theft of login credentials. Storage of these credentials as part of the authentication system makes a login system vulnerable for the theft. Various types of malicious activities have led in revealing this pair of information which attack on the stored database. We propose a novel concept for login systems which does not store such credentials in the database. The credentials are generated and verified algorithmically. It is also ensured that the generated credentials are human friendly for uses. © 2016 ACM.