I know this is a NANOG forum but curious how widespread usage of MACsec
might be. (https://1.ieee802.org/security/802-1ae/).Currently reading
the spec but wanted to pose some questions.
I'm seeing some pitfalls:
1) May not work over wireless LAN devices?
2) Needs a centralized key serve
On Mon, 21 Oct 2024 at 20:34, John Schiel wrote:
> 1) May not work over wireless LAN devices?
I guess it depends on wireless technology, but 802.11xyzzy comes with
an encryption solution already so isn't really a target of interest.
> 2) Needs a centralized key server.
Not really, impl
>
> Regarding speed, the first few pages I hit made a comment that it was
> slower because of packet overhead. I'm reading more and that is less of
> a concern.
>
There's certainly a penalty paid for the extra time encrypting and
decrypting , which of course can aggregate over a large number of pr
Thanks.
I threw this out there not knowing how fast someone would respond.
I only heard about this recently and am surprised it as as old as it is.
Regarding speed, the first few pages I hit made a comment that it was
slower because of packet overhead. I'm reading more and that is less of
a
It is definitely deployed out there. I wouldn't worry too much about
reading the specs. All of the implementations I've dealt with are only
partial implementations. They almost all are limited to "point to point"
functionality.
As for comparing to IPsec, IPsec came out of a different time. It is m
5 matches
Mail list logo
