Hello, Bjorn, Appreciate your analysis.
> True, in CAPWAP it's a border case that 802.1X key exchange and 802.11 > encryption protects the user data plane all the way from the mobile > STA to the AC. But I think there are strong reasons to make this the > default: But I do not agree here. The 802.11 key only protect the data from STA to WTP, NOT the AC, both in local MAC and also one option in the split model. http://tools.ietf.org/html/rfc5416#section-2.2.2 -Zhen _______________________________________________ OPSAWG mailing list [email protected] https://www.ietf.org/mailman/listinfo/opsawg
