Thread Links Date Links
Thread Prev Thread Next Thread Index Date Prev Date Next Date Index

Re: [STDS-802-11-TGBE] CID 13162 - SAE Entity definition



Hi Mike and Stephen,

 

                Agree with Stephen that the shorten version already preserves the meaning because “STA” includes AP STA, non-AP STA and mesh STA.

 

                Note that the current baseline clarifies that by saying STAs including AP STAs and non-AP STAs.

 

STAs, both AP STAs and non-AP STAs, may authenticate each other by proving possession of a password.
Authentication protocols that employ passwords need to be resistant to off-line dictionary attacks.

 

                If we really want to add, then the addition can not be like the following, which suggests that non-AP STA, AP, and mesh STA are different from “STA”.

               

(13162) REVISED. Change the definition at 53.63 to "simultaneous authentication of equals (SAE) entity: an entity that is a station (STA), non-AP STA, AP, mesh STA, or a multi-link device (MLD) that participates in SAE authentication (see 12.4 (Authentication using a password))."

 

                I suggest that it has to be something like the following that further expands the description of the STA.

 

"simultaneous authentication of equals (SAE) entity: an entity that is a station (STA), including an AP STA or an non-AP STA or a mesh STA, or a multi-link device (MLD) that participates in SAE authentication (see 12.4 (Authentication using a password))."

 

 

Best,

Po-Kai

 

From: Stephen McCann <mccann.stephen@xxxxxxxxx>
Sent: Wednesday, August 17, 2022 9:52 AM
To: STDS-802-11-TGBE@xxxxxxxxxxxxxxxxx
Subject: Re: [STDS-802-11-TGBE] CID 13162 - SAE Entity definition

 

Mike,

         I'm happy with this addition, although the definition could also be shortened to:

 

"simultaneous authentication of equals (SAE) entity: an entity that is a station (STA) or a multi-link device (MLD) that participates in SAE authentication (see 12.4 (Authentication using a password))."

 

Kind regards

 

Stephen

 

On Wed, 17 Aug 2022 at 17:30, M Montemurro <montemurro.michael@xxxxxxxxx> wrote:

Hello all, 

 

During the discussion of https://mentor.ieee.org/802.11/dcn/22/11-22-1178-03-00be-tgbe-lb266-security-comment-resolutions.docx, we did not reach a conclusion of CID 13162.  I'd like to initiate a discussion on the reflector to see if there is consensus on a resolution to this CID.

 

(13162) REVISED. Change the definition at 53.63 to "simultaneous authentication of equals (SAE) entity: an entity that is a station (STA), non-AP STA, AP, mesh STA, or a multi-link device (MLD) that participates in SAE authentication (see 12.4 (Authentication using a password))."

 

I would like to note that the commenter brought up mesh STAs uses SAE and requested that mesh be incorporated into the definition.

 

Cheers,

 

Mike

 

 

 


To unsubscribe from the STDS-802-11-TGBE list, click the following link: https://listserv.ieee.org/cgi-bin/wa?SUBED1=STDS-802-11-TGBE&A=1


To unsubscribe from the STDS-802-11-TGBE list, click the following link: https://listserv.ieee.org/cgi-bin/wa?SUBED1=STDS-802-11-TGBE&A=1


To unsubscribe from the STDS-802-11-TGBE list, click the following link: https://listserv.ieee.org/cgi-bin/wa?SUBED1=STDS-802-11-TGBE&A=1