How to implement user authentication in open WiFi using an electronic signature?

R

rr8062018-03-27 09:41:18

WiFi

rr806, 2018-03-27 09:41:18

Hello, tell me please.
As part of the final work, it is necessary to develop a system for authenticating users in open WiFi using an electronic signature. Tell me who is competent in this matter. What implementation scheme, what protocols to use, etc.
Thanks in advance.

Reply

Answer the question

In order to leave comments, you need to log in

5 answer(s)

C

CityCat4, 2018-03-27
@CityCat4

Uh...you offer us to do the work for you? :)

O

Oopss, 2018-03-27
@Oopss

The signature does not encrypt, it confirms the authorship, the integrity of the document. Open WiFi will remain open.

A

alex_ak1, 2018-03-27
@alex_ak1

I read how it works when authenticating with a phone. At the first connection, all traffic is turned to an internal web server, which asks you to enter a phone number and sends you an SMS with a code. After entering the code, the server allows your ip to go to the Internet (just a rule in iptables).
Replace the web server in this place and you will be able to verify something against the client certificate.

X

xmoonlight, 2018-03-27
@xmoonlight

General information on operation and configuration: here (keenetic)

V

Valentine, 2018-03-27
@vvpoloskin

If we are talking specifically about authentication without authorization and encryption, then we need to experiment with a transparent ssl proxy with authentication using a pre-issued ssl certificate. Of the free options, study squid in this direction and the possibilities of a point or gateway for transparent proxying, everything is being done.
Or a simplification - as they advised here, a captive portal to an internal https resource, which will already check the certificate issued in advance and redirect to the initially requested resources. Need to script.