Re: WPA for Ethernet? - John W. Linville

All of lore.kernel.org
 help / color / mirror / Atom feed

From: "John W. Linville" <linville@tuxdriver.com>
To: jpo234 <pommnitz@yahoo.com>
Cc: linux-wireless@vger.kernel.org
Subject: Re: WPA for Ethernet?
Date: Fri, 11 Feb 2011 11:28:45 -0500	[thread overview]
Message-ID: <20110211162845.GC2224@tuxdriver.com> (raw)
In-Reply-To: <loom.20110211T163104-102@post.gmane.org>

On Fri, Feb 11, 2011 at 03:39:03PM +0000, jpo234 wrote:
> Hello all,
> is it possible to use the mac80211 (software) encryption infrastructure to
> encrypt data over non 802.11 interfaces? If not, how hard would this be?
> 
> IPsec and other VPN solutions are "tunnel centric" instead of "interface
> centric". I'm looking for a way to say "All inbound and outbound traffic through
> this interface must be encrypted with the following key.", just like WPA-PSK.

I believe wpa_supplicant can do the 802.1x authentication to gain
access to a port on a supporting switch.  However, I am not aware
of any standard for "encrypted ethernet" that would build upon that.
You might consider implementing your own code on top of the TUN/TAP
driver for point-to-point encrypted links?

John
-- 
John W. Linville                Someday the world will need a hero, and you
linville@tuxdriver.com                  might be all we have.  Be ready.

next prev parent reply	other threads:[~2011-02-11 16:29 UTC|newest]

Thread overview: 6+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2011-02-11 15:39 WPA for Ethernet? jpo234
2011-02-11 16:28 ` John W. Linville [this message]
2011-02-12  0:08   ` jpo
2011-02-14 12:10 ` Jouni Malinen
2011-02-14 13:03   ` jpo234
  -- strict thread matches above, loose matches on Subject: below --
2011-02-11 16:51 Henry Ptasinski

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20110211162845.GC2224@tuxdriver.com \
    --to=linville@tuxdriver.com \
    --cc=linux-wireless@vger.kernel.org \
    --cc=pommnitz@yahoo.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.