Secure WIFI portals in WIFI4EU environment

Detalhes bibliográficos
Autor(a) principal: Santos, José Pedro Estima
Data de Publicação: 2019
Tipo de documento: Dissertação
Idioma: eng
Título da fonte: Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
Texto Completo: http://hdl.handle.net/10773/29534
Resumo: As hotspot networks are increasingly present and used, the amount of sensitive information that is transmitted in this type of network and the fact that users might not be trustworthy leads to the need for existence of security mechanisms that can guarantee, at least, confidentiality and integrity of the users’ transmitted data, as well as the authentication of these networks in order to avoid malicious ones. The majority of public hotspots work based on captive portals and require "authentication", which is not always a secure one (through a captive portal) however, captive portals can be explored in order to be used in conjunction with different technology to provide more secure solutions. This works studies the 802.1X architecture and the way it is used, it also studies captive portals and the different ways that public hotspots provide Internet to its users. The goal of this work is to develop an application that will allow users to register themselves in a system, seamlessly provide them with asymmetric credentials and configure a Wi-Fi connection to a secure network. The registration in this system and the download of the application are done through a captive portal. The users can then authenticate in the secure Wi-Fi network that was configured in their devices, this network is an extension of the EAP method, namely TLS, to authenticate the users according to the credentials that were given to them. This network also allows for authentication, authorization and accounting of its users, it will also allow users that registered in a given captive portal to use the network in any place where it is provided.
id RCAP_fb4fbdbb2b9128e42650e690b3cbd931
oai_identifier_str oai:ria.ua.pt:10773/29534
network_acronym_str RCAP
network_name_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository_id_str 7160
spelling Secure WIFI portals in WIFI4EU environment802.1XSecurityNetworksEAPTLSCaptive portalsHotspotsAs hotspot networks are increasingly present and used, the amount of sensitive information that is transmitted in this type of network and the fact that users might not be trustworthy leads to the need for existence of security mechanisms that can guarantee, at least, confidentiality and integrity of the users’ transmitted data, as well as the authentication of these networks in order to avoid malicious ones. The majority of public hotspots work based on captive portals and require "authentication", which is not always a secure one (through a captive portal) however, captive portals can be explored in order to be used in conjunction with different technology to provide more secure solutions. This works studies the 802.1X architecture and the way it is used, it also studies captive portals and the different ways that public hotspots provide Internet to its users. The goal of this work is to develop an application that will allow users to register themselves in a system, seamlessly provide them with asymmetric credentials and configure a Wi-Fi connection to a secure network. The registration in this system and the download of the application are done through a captive portal. The users can then authenticate in the secure Wi-Fi network that was configured in their devices, this network is an extension of the EAP method, namely TLS, to authenticate the users according to the credentials that were given to them. This network also allows for authentication, authorization and accounting of its users, it will also allow users that registered in a given captive portal to use the network in any place where it is provided.Visto que as redes hotspot estão cada vez mais presentes e são bastante utilizadas, a quantidade de informação sensível que é transmitida neste tipo de redes e o facto dos utilizadores poderem não ser de confiança, faz com que seja necessária a existência de mecanismos de segurança que consigam garantir, pelo menos, a confidencialidade e integridade dos dados transmitidos, bem como a autenticação deste tipo de redes, por forma a evitar eventuais redes malignas. Grande parte dos hotspots públicos funcionam com base em captive portals sendo necessária uma "autenticação", que nem sempre pode ser considerada como segura (através de um portal web) contudo estes podem ser explorados por forma a ser utilizados, em conjunto com outras tecnologias, para providenciar soluções mais seguras. Este trabalho estuda o que é a arquitetura 802.1X e a forma como é utilizada, estuda também como funcionam os captive portals e as diferentes formas através das quais hotspots públicos fornecem Internet aos seus utilizadores. O objetivo deste trabalho é desenvolver uma aplicação que permitirá aos seus utlizadores registaram-se num sistema, fornecer-lhes credenciais assimétricas, de uma forma simplificada, e configurar uma ligação Wi-Fi a uma rede segura. O registo neste sistema e o download da aplicação serão feitos através de um captive portal. Os utilizadores poderão então autenticar-se na rede Wi-Fi segura que foi configurada nos seus dispositivos, esta rede utiliza uma extensão do protocolo EAP, nomeadamente o TLS, para autenticar os seus utilizadores tendo em conta as credenciais assimétricas que lhes foram fornecidas. Esta rede além de permitir fazer autenticação, autorização e a contabilização dos seus utilizadores, também permitirá que os utilizadores que se registem num determinado captive portal possam utilizar esta rede em qualquer sítio onde é fornecida.2020-10-21T15:00:03Z2019-12-01T00:00:00Z2019-12info:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/masterThesisapplication/pdfhttp://hdl.handle.net/10773/29534engSantos, José Pedro Estimainfo:eu-repo/semantics/openAccessreponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãoinstacron:RCAAP2024-02-22T11:57:10Zoai:ria.ua.pt:10773/29534Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireopendoar:71602024-03-20T03:01:51.274324Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãofalse
dc.title.none.fl_str_mv Secure WIFI portals in WIFI4EU environment
title Secure WIFI portals in WIFI4EU environment
spellingShingle Secure WIFI portals in WIFI4EU environment
Santos, José Pedro Estima
802.1X
Security
Networks
EAP
TLS
Captive portals
Hotspots
title_short Secure WIFI portals in WIFI4EU environment
title_full Secure WIFI portals in WIFI4EU environment
title_fullStr Secure WIFI portals in WIFI4EU environment
title_full_unstemmed Secure WIFI portals in WIFI4EU environment
title_sort Secure WIFI portals in WIFI4EU environment
author Santos, José Pedro Estima
author_facet Santos, José Pedro Estima
author_role author
dc.contributor.author.fl_str_mv Santos, José Pedro Estima
dc.subject.por.fl_str_mv 802.1X
Security
Networks
EAP
TLS
Captive portals
Hotspots
topic 802.1X
Security
Networks
EAP
TLS
Captive portals
Hotspots
description As hotspot networks are increasingly present and used, the amount of sensitive information that is transmitted in this type of network and the fact that users might not be trustworthy leads to the need for existence of security mechanisms that can guarantee, at least, confidentiality and integrity of the users’ transmitted data, as well as the authentication of these networks in order to avoid malicious ones. The majority of public hotspots work based on captive portals and require "authentication", which is not always a secure one (through a captive portal) however, captive portals can be explored in order to be used in conjunction with different technology to provide more secure solutions. This works studies the 802.1X architecture and the way it is used, it also studies captive portals and the different ways that public hotspots provide Internet to its users. The goal of this work is to develop an application that will allow users to register themselves in a system, seamlessly provide them with asymmetric credentials and configure a Wi-Fi connection to a secure network. The registration in this system and the download of the application are done through a captive portal. The users can then authenticate in the secure Wi-Fi network that was configured in their devices, this network is an extension of the EAP method, namely TLS, to authenticate the users according to the credentials that were given to them. This network also allows for authentication, authorization and accounting of its users, it will also allow users that registered in a given captive portal to use the network in any place where it is provided.
publishDate 2019
dc.date.none.fl_str_mv 2019-12-01T00:00:00Z
2019-12
2020-10-21T15:00:03Z
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/masterThesis
format masterThesis
status_str publishedVersion
dc.identifier.uri.fl_str_mv http://hdl.handle.net/10773/29534
url http://hdl.handle.net/10773/29534
dc.language.iso.fl_str_mv eng
language eng
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.source.none.fl_str_mv reponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron:RCAAP
instname_str Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron_str RCAAP
institution RCAAP
reponame_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
collection Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository.name.fl_str_mv Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
repository.mail.fl_str_mv
_version_ 1799137674088415232

Registros relacionados