Fraunhofer-Gesellschaft

Publica

Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Remote WebAuthn: FIDO2 Authentication for Less Accessible Devices

 
: Wagner, Paul; Heid, Kris; Heider, Jens

:
Fulltext ()

Mori, P. ; Institute for Systems and Technologies of Information, Control and Communication -INSTICC-, Setubal:
7th International Conference on Information Systems Security and Privacy, ICISSP 2021. Proceedings : February 11-13, 2021
Setúbal: SciTePress, 2021
ISBN: 978-989-758-491-6
pp.368-375
International Conference on Information Systems Security and Privacy (ICISSP) <7, 2021, Online>
English
Conference Paper, Electronic Publication
Fraunhofer SIT ()

Abstract
Nowadays, passwords are the prevalent authentication mechanism, even though it is proven to offer insufficient protection against cyber crime. Thus, FIDO2 was released with a more secure authentication mechanism. FIDO2 enables authentification with cryptographic hardware, such as USB sticks, NFC cards or in the smartphone integrated chips. A device with FIDO2 support is required to implement the whole FIDO2 stack and offer the required interfaces for the security hardware. However, many systems like for example Smart TVs can not make use of FIDO2 due to the lack of HW interfaces or the usage of outdated software. To overcome this, we present Remote WebAuthn, which enables secure authentification on such restricted devices through a remote authentication from a secondary, FIDO2 compatible device, such as a smartphone. We evaluate our approach to have better usability compared to FIDO2 while maintaining most security advantages.

: http://publica.fraunhofer.de/documents/N-625032.html