Pre-shared Key Agreement for Secure Public Wi-Fi

TL;DR

This paper introduces SOAP, a new pre-shared key scheme for Wi-Fi that uses public key cryptography to establish secure connections without prior password knowledge, improving convenience and security.

Contribution

The paper proposes SOAP, a novel scheme combining ECDH and ECDSA for passwordless Wi-Fi security, enhancing user experience and security without prior password exchange.

Findings

Implementation confirms scheme viability

Experiment shows secure connection establishment

No prior password required for secure setup

Abstract

This paper presents a novel pre-shared key (PSK) agreement scheme to establish a secure connection between a Wi-Fi client and access point (AP) without prior knowledge of a password. The standard IEEE 802.11 security method, Robust Security Network Association, widely known as Wi-Fi Protected Access (WPA) and WPA2, derives a shared cryptographic key if and only if a user provides an identical password which an AP possesses, causing ofinconvenience of obtaining and entering the password. In this paper, a proposed scheme, Secure Open AP (SOAP), adopts two public key algorithms, the elliptic curve Diffie-Hellman key exchange algorithm (ECDH) and digital signature algorithm (ECDSA) to establish a secure connection between a client and an AP without having prior knowledge of a password. Implementation and experiment results demonstrate the viability of the proposed scheme.