Thread Links | Date Links | ||||
---|---|---|---|---|---|
Thread Prev | Thread Next | Thread Index | Date Prev | Date Next | Date Index |
Hi Jay, It's possible for passwords and password identifiers to be for a group. In fact, that was the use case that compelled the addition. The idea was a multi-tenant building in which the landlord offers wi-fi as a service. So instead of having
a single password for everyone in the building it would be a password, with identifier, per unit. That way apartment 205 would have a password and identifier for all devices in apartment 205 and apartment 206 would have a different one for all the devices
in apartment 206. If someone took a tablet down to the pool he or she could log in to wi-fi poolside with his or her own password (with identifier). The only way to do that today is to have an SSID per unit but if there are a few dozen units it become untenable
to beacon out that many SSIDs. So yes, passwords with identifiers can be unique, one per person, or they can be shared. There's no restriction. regards, Dan. -- "the object of life is not to be on the side of the majority, but to escape finding oneself in the ranks of the insane." – Marcus Aurelius On 3/11/22, 5:41 AM, "Yang, Zhijie (NSB - CN/Shanghai)" <zhijie.yang@xxxxxxxxxxxxxxx> wrote: Hi Dan, all, I try to revise the document 332r31 based on the comments yesterday. I see you mentioned the “SAE password identifier” can address the concern on use case 4.27: “STA identification in database”. I did a quickly study on that part today, if I understand correctly, such solution only works if the password is unique for each
STA. But the scenario in 4.27 is a general case, the administer may allocate the same or different SSID/password to each user. That’s,
if the user share the same SSID/password as we did today, the solution won’t work. Please correct me if I make any mistake. The AP sets the SAE Password Identifiers Used Exclusively field to 1 when every password in the dot11RSNAConfigPasswordValueTable has a password identifier and sets it to 0 otherwise. See 12.4.3 (Representation of a password). “ 12.4.3 Representation of a password Passwords are used in SAE to deterministically compute a secret element in the negotiated group, called a password element. The input to this process needs to be in the form of a binary string. For the protocol to successfully terminate, it is necessary for each side to produce identical binary strings for a given password, even if that password is in character format. There is no canonical binary representation of a character and ambiguity exists when the password is a character string.
” Thanks Best Regards Jay Yang To unsubscribe from the STDS-802-11-TGBH list, click the following link: https://listserv.ieee.org/cgi-bin/wa?SUBED1=STDS-802-11-TGBH&A=1 |