On Nov 10, 2025, at 9:47 AM, Michael Richardson <[email protected]> wrote: > As we discussed at the mic, I'm not convinced it's needed, and I'm concerned > that it requires much more effort to deploy. > Having said that, if the WG prefers this, then it could be done.
My $0.02 would be to just use EAP-TLS. The signal of EAP Identity being @tls.eap.arp should be enough for people to tell the difference between that and normal TLS. Adding a new TLS method would likely involve more code changes on supplicants and servers, which means that it's less likely to be adopted. >> The Wi-Fi Alliance and hostapd specifications and implementations, >> discussed earlier on the list, appear to use an EAP type that is >> different from EAP-TLS type. > > Which method is this? It's a vendor-specific EAP method. It uses the WFA vendor ID (40808) and 13 as the vendor-specific EAP type. Alan DeKok. _______________________________________________ Emu mailing list -- [email protected] To unsubscribe send an email to [email protected]
