Answer the question
In order to leave comments, you need to log in
How to implement user authentication in open WiFi using an electronic signature?
Hello, tell me please.
As part of the final work, it is necessary to develop a system for authenticating users in open WiFi using an electronic signature. Tell me who is competent in this matter. What implementation scheme, what protocols to use, etc.
Thanks in advance.
Answer the question
In order to leave comments, you need to log in
The signature does not encrypt, it confirms the authorship, the integrity of the document. Open WiFi will remain open.
I read how it works when authenticating with a phone. At the first connection, all traffic is turned to an internal web server, which asks you to enter a phone number and sends you an SMS with a code. After entering the code, the server allows your ip to go to the Internet (just a rule in iptables).
Replace the web server in this place and you will be able to verify something against the client certificate.
General information on operation and configuration: here (keenetic)
If we are talking specifically about authentication without authorization and encryption, then we need to experiment with a transparent ssl proxy with authentication using a pre-issued ssl certificate. Of the free options, study squid in this direction and the possibilities of a point or gateway for transparent proxying, everything is being done.
Or a simplification - as they advised here, a captive portal to an internal https resource, which will already check the certificate issued in advance and redirect to the initially requested resources. Need to script.
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question