A Novel Protocol Using Captive Portals for FIDO2 Network Authentication

A Novel Protocol Using Captive Portals for FIDO2 Network Authentication

FIDO2 authentication is starting to be applied in numerous web authentication services, aiming to replace passwords and their known vulnerabilities. However, this new authentication method has not been integrated yet with network authentication systems. In this paper, we introduce FIDO2CAP: FIDO2 Ca...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Applied sciences 2024-05, Vol.14 (9), p.3610
Hauptverfasser: Rivera-Dourado, Martiño, Gestal, Marcos, Pazos, Alejandro, Vázquez-Naya, Jose
Format: Artikel
Sprache:eng
Schlagworte:
Access control
captive portal
Computer network protocols
Cybercrime
Data encryption chips
Embedded systems
FIDO2
Information systems
Methods
network authentication
Operating systems
Passwords
Protocol
Registration
Safety and security measures
security key
Social networks
Software
Web applications
WebAuthn
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:FIDO2 authentication is starting to be applied in numerous web authentication services, aiming to replace passwords and their known vulnerabilities. However, this new authentication method has not been integrated yet with network authentication systems. In this paper, we introduce FIDO2CAP: FIDO2 Captive-portal Authentication Protocol. Our proposal describes a novel protocol for captive-portal network authentication using FIDO2 Authenticators as security keys and passkeys. For validating our proposal, we have developed a prototype of FIDO2CAP authentication in a mock scenario. Using this prototype, we performed a usability experiment with 15 real users. This work makes the first systematic approach for adapting network authentication to the new authentication paradigm relying on FIDO2 authentication.
ISSN:2076-3417
2076-3417
DOI:10.3390/app14093610