IETF Logo Mail Archive

Re: [88attendees] WPA2 Enterprise WiFi?

Warren Kumari <warren@kumari.net> Fri, 08 November 2013 19:42 UTC

Return-Path: <warren@kumari.net>
X-Original-To: 88attendees@ietfa.amsl.com
Delivered-To: 88attendees@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4A20221E8210 for <88attendees@ietfa.amsl.com>; Fri, 8 Nov 2013 11:42:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.599
X-Spam-Level:
X-Spam-Status: No, score=-102.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NeqCbtZb7oPX for <88attendees@ietfa.amsl.com>; Fri, 8 Nov 2013 11:42:11 -0800 (PST)
Received: from vimes.kumari.net (smtp1.kumari.net [204.194.22.1]) by ietfa.amsl.com (Postfix) with ESMTP id 29B0B11E81B6 for <88attendees@ietf.org>; Fri, 8 Nov 2013 11:41:38 -0800 (PST)
Received: from [31.130.224.155] (unknown [31.130.224.155]) by vimes.kumari.net (Postfix) with ESMTPSA id 196901B4035F; Fri, 8 Nov 2013 14:41:37 -0500 (EST)
Content-Type: text/plain; charset="windows-1252"
Mime-Version: 1.0 (Mac OS X Mail 6.6 \(1510\))
From: Warren Kumari <warren@kumari.net>
In-Reply-To: <527D3AB4.40600@sidn.nl>
Date: Fri, 08 Nov 2013 11:41:35 -0800
Content-Transfer-Encoding: quoted-printable
Message-Id: <09EFC37F-CFBC-4573-9F44-BA1ECF81F896@kumari.net>
References: <527D3AB4.40600@sidn.nl>
To: "Marco Davids (SIDN)" <marco.davids@sidn.nl>
X-Mailer: Apple Mail (2.1510)
Cc: Warren Kumari <warren@kumari.net>, "88attendees@ietf.org" <88attendees@ietf.org>
Subject: Re: [88attendees] WPA2 Enterprise WiFi?
X-BeenThere: 88attendees@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Mailing list of IETF 88 attendees that have opted in to the list." <88attendees.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/88attendees>, <mailto:88attendees-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/88attendees>
List-Post: <mailto:88attendees@ietf.org>
List-Help: <mailto:88attendees-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/88attendees>, <mailto:88attendees-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 08 Nov 2013 19:42:24 -0000

On Nov 8, 2013, at 11:25 AM, "Marco Davids (SIDN)" <marco.davids@sidn.nl> wrote:

> Hi,
> 
> Now, I'm not an expert on the matter, but since privacy seems to be the
> major theme of this 88th IETF, I was wondering; would it be of any value
> if we introduce WPA2 Enterprise (WPA-802.1X mode) in the WiFi network ?
> 
> Logging in with personal credentials seems a bit more secure in terms of
> 'privacy'.

Not to me it doesn't…

If everyone logs in as ietf, ietf it is much harder to correlate a user with a device (especially if the machine doesn't identify itself as "BobSmiths-mac" via DHCP!)

Logging in a "BobSmith" and "Hunter3" makes it fairly clear who you are.
Using the .1x SSIDs already gets you encryption, etc on the wise…


> 
> The IETF could send them to me, PGP-encrypted, next time I register and
> upload my PGP-key on the website, for example.

-1

> 
> Regards,
> 
> -- 
> Marco
> _______________________________________________
> 88attendees mailing list
> 88attendees@ietf.org
> https://www.ietf.org/mailman/listinfo/88attendees
> 

--
Credo quia absurdum est.

v2.23.0 | Report a Bug | By Email