Pre-shared Key Agreement for Secure Public Wi-Fi
This addresses the problem of password management for users and administrators in public Wi-Fi settings, though it is an incremental improvement over existing cryptographic methods.
The paper tackles the inconvenience of password-based Wi-Fi security by proposing a pre-shared key agreement scheme called SOAP, which uses elliptic curve cryptography to establish secure connections without passwords, with implementation results confirming its viability.
This paper presents a novel pre-shared key (PSK) agreement scheme to establish a secure connection between a Wi-Fi client and access point (AP) without prior knowledge of a password. The standard IEEE 802.11 security method, Robust Security Network Association, widely known as Wi-Fi Protected Access (WPA) and WPA2, derives a shared cryptographic key if and only if a user provides an identical password which an AP possesses, causing ofinconvenience of obtaining and entering the password. In this paper, a proposed scheme, Secure Open AP (SOAP), adopts two public key algorithms, the elliptic curve Diffie-Hellman key exchange algorithm (ECDH) and digital signature algorithm (ECDSA) to establish a secure connection between a client and an AP without having prior knowledge of a password. Implementation and experiment results demonstrate the viability of the proposed scheme.