On Wed, Nov 18, 2015 at 4:46 PM, Ted Lemon <[email protected]> wrote: > Wednesday, Nov 18, 2015 9:20 AM Steven Barth wrote: >> The basic idea behind the SHOULD is that there may be cases where either >> physical security of links (e.g. cables) can be ensured or link-layer >> security such as WPA for WiFi is present. In these cases (e.g. some sort >> homenet wifi repeater) the DTLS would be redundant. > > WPA2, at least in PSK mode, does not provide confidentiality from attackers > who have the PSK. WPA isn't even as good as WPA2. I think relying on this > level of security makes sense if we have no alternative, but in no other case.
I don't think DTLS with PSK is much better than WPA2 with PSK... Henning Rogge _______________________________________________ homenet mailing list [email protected] https://www.ietf.org/mailman/listinfo/homenet
