Hi Graham and All,
A couple questions/comments:
- Graham what was your motivation to restrict this mechanism to a BPE AP? I don’t think it is a necessary restriction.
- I think the proposed requirement could be more clearly stated so the privacy advantage is clearer, how about:
11bi shall define at least one mechanism that will allow an non-AP STA to verify the identity of a known AP prior to transmission of any pre-association PPDUs to the AP. This mechanism should allow the non-AP STA to limit its transmission of Probes Requests
and Association Requests to a known AP to a location where the known AP is actually present (i.e., not to a spoofed AP).
From: G Smith <gsmith@xxxxxxxxxxxxxxxxxxx>
Sent: Thursday, August 18, 2022 12:03 PM
Subject: [STDS-802-11-TGBI] Protection against Spoof AP
Thank you for the comments and feedback on 22/1253r0 on the subject of protection against a Spoof AP.
I am considering proposing the following text for insertion into 21/1848 Requirements document:
- 11bi shall define a mechanism for a BPE AP to be identified such that a BPE Client can confirm that the AP is not a spoof AP. Hence, the BPE Client will not send an Association Request and reveal its
I welcome any suggestions or comments
To unsubscribe from the STDS-802-11-TGBI list, click the following link:
To unsubscribe from the STDS-802-11-TGBI list, click the following link: https://listserv.ieee.org/cgi-bin/wa?SUBED1=STDS-802-11-TGBI&A=1