EAP-FIDO: A Novel EAP Method for Using FIDO2 Credentials for Network Authentication
Cryptography and Security
2025-05-19 v1
Abstract
The adoption of FIDO2 authentication by major tech companies in web applications has grown significantly in recent years. However, we argue FIDO2 has broader potential applications. In this paper, we introduce EAP-FIDO, a novel Extensible Authentication Protocol (EAP) method for use in IEEE 802.1X-protected networks. This allows organisations with WPA2/3-Enterprise wireless networks or MACSec-enabled wired networks to leverage FIDO2's passwordless authentication in compliance with existing standards. Additionally, we provide a comprehensive security and performance analysis to support the feasibility of this approach.
Keywords
Cite
@article{arxiv.2412.03277,
title = {EAP-FIDO: A Novel EAP Method for Using FIDO2 Credentials for Network Authentication},
author = {Martiño Rivera-Dourado and Christos Xenakis and Alejandro Pazos and Jose Vázquez-Naya},
journal= {arXiv preprint arXiv:2412.03277},
year = {2025}
}
Comments
This is an author version. It has not been peer reviewed