Papers
Topics
Authors
Recent
Gemini 2.5 Flash
Gemini 2.5 Flash
158 tokens/sec
GPT-4o
7 tokens/sec
Gemini 2.5 Pro Pro
45 tokens/sec
o3 Pro
4 tokens/sec
GPT-4.1 Pro
38 tokens/sec
DeepSeek R1 via Azure Pro
28 tokens/sec
2000 character limit reached

A Novel Protocol Using Captive Portals for FIDO2 Network Authentication (2402.12864v1)

Published 20 Feb 2024 in cs.CR, cs.NI, and cs.SE

Abstract: FIDO2 authentication is starting to be applied in numerous web authentication services, aiming to replace passwords and their known vulnerabilities. However, this new authentication method has not been integrated yet with network authentication systems. In this paper, we introduce FIDO2CAP: FIDO2 Captive-portal Authentication Protocol. Our proposal describes a novel protocol for captive-portal network authentication using FIDO2 authenticators, as security keys and passkeys. For validating our proposal, we have developed a prototype of FIDO2CAP authentication in a mock scenario. Using this prototype, we performed an usability experiment with 15 real users. This work makes the first systematic approach for adapting network authentication to the new authentication paradigm relying on FIDO2 authentication.

Definition Search Book Streamline Icon: https://streamlinehq.com
References (13)
  1. Fido Alliance - Open Authentication Standards more secure than passwords. Available online: https://fidoalliance.org/ (accessed on 14 October 2023).
  2. Web Authentication: An API for accessing Public Key Credentials Level 1. Available online: https://www.w3.org/TR/webauthn-1/ (accessed on 14 October 2023).
  3. Web Authentication API - Web APIs — MDN , n.d. Available online: https://developer.mozilla.org/en-US/docs/Web/API/Web_Authentication_API (accessed on 14 October 2023).
  4. Cisco Systems, 2022. The 2022 Duo Trusted Access Report. Available online: https://duo.com/assets/ebooks/the-2022-duo-trusted-access-report.pdf (accessed on 14 October 2023).
  5. ‘Passkey - the simplest way to sign into your Google Account’. Available online: https://safety.google/authentication/passkey/ (accessed on 14 October 2023).
  6. Web Authentication: An API for accessing Public Key Credentials Level 3. Available online: https://www.w3.org/TR/webauthn-3/ (accessed on 14 October 2023).
  7. Captive Portal — pfSense Documentation, n.d. Available online: https://docs.netgate.com/pfsense/en/latest/captiveportal/index.html (accessed on 14 October 2023).
  8. Forwarding Authentication Service (FAS) — openNDS v9.7.0 , n.d. Available online: https://opennds.readthedocs.io/en/stable/fas.html (accessed on 14 October 2023).
  9. Authentication Ceremony Privacy, Web Authentication: An API for accessing Public Key Credentials Level 2. Available online: https://www.w3.org/TR/webauthn-2/#sctn-assertion-privacy (accessed on 14 October 2023).
  10. ISO 9241-11:2018. Ergonomics of human-system interaction — Part 11: Usability: Definitions and concepts. Available online: https://www.iso.org/standard/63500.html (accessed on 14 October 2023).
  11. Kumari, W. “Ace”, Kline, E., 2020. RFC 8910: Captive-Portal Identification in DHCP and Router Advertisements (RAs). Internet Engineering Task Force. Available online: https://doi.org/10.17487/RFC8910 (accessed on 14 October 2023).
  12. Security — Wi-Fi Alliance , n.d. Available online: https://www.wi-fi.org/discover-wi-fi/security#Wi-FiEnhancedOpen (accessed on 14 October 2023).
  13. martinord/fido2cap-server: WebAuthn Authentication Web Application compatible with OpenNDS Captive Portal, n.d. . GitHub. Available online: https://github.com/martinord/fido2cap-server (accessed on 14 October 2023).
Citations (1)
View on Semantic Scholar

Summary

We haven't generated a summary for this paper yet.

Ai Sparkles Streamline Icon: https://streamlinehq.com Summarize Now
X Twitter Logo Streamline Icon: https://streamlinehq.com

Tweets