A Novel Protocol Using Captive Portals for FIDO2 Network Authentication

Martiño Rivera-Dourado; Marcos Gestal; Alejandro Pazos; Jose Vázquez-Naya

doi:10.3390/app14093610

Applied Sciences (Apr 2024)

A Novel Protocol Using Captive Portals for FIDO2 Network Authentication

Martiño Rivera-Dourado,
Marcos Gestal,
Alejandro Pazos,
Jose Vázquez-Naya

Affiliations

Martiño Rivera-Dourado: Grupo RNASA-IMEDIR, Facultade de Informática, Universidade da Coruña, Campus de Elviña, 15071 A Coruña, Spain
Marcos Gestal: Grupo RNASA-IMEDIR, Facultade de Informática, Universidade da Coruña, Campus de Elviña, 15071 A Coruña, Spain
Alejandro Pazos: Grupo RNASA-IMEDIR, Facultade de Informática, Universidade da Coruña, Campus de Elviña, 15071 A Coruña, Spain
Jose Vázquez-Naya: Grupo RNASA-IMEDIR, Facultade de Informática, Universidade da Coruña, Campus de Elviña, 15071 A Coruña, Spain

DOI: https://doi.org/10.3390/app14093610
Journal volume & issue: Vol. 14, no. 9
p. 3610

Abstract

Read online

FIDO2 authentication is starting to be applied in numerous web authentication services, aiming to replace passwords and their known vulnerabilities. However, this new authentication method has not been integrated yet with network authentication systems. In this paper, we introduce FIDO2CAP: FIDO2 Captive-portal Authentication Protocol. Our proposal describes a novel protocol for captive-portal network authentication using FIDO2 Authenticators as security keys and passkeys. For validating our proposal, we have developed a prototype of FIDO2CAP authentication in a mock scenario. Using this prototype, we performed a usability experiment with 15 real users. This work makes the first systematic approach for adapting network authentication to the new authentication paradigm relying on FIDO2 authentication.

Published in Applied Sciences

ISSN: 2076-3417 (Online)
Publisher: MDPI AG
Country of publisher: Switzerland
LCC subjects: Technology: Engineering (General). Civil engineering (General); Science: Biology (General); Science: Physics; Science: Chemistry
Website: http://www.mdpi.com/journal/applsci

About the journal

Abstract

Keywords