On Mon, Oct 16, 2017 at 6:43 AM, Stefan Sperling <s...@stsp.name> wrote: > On Mon, Oct 16, 2017 at 10:22:26AM +0000, C. L. Martinez wrote: >> Regarding WPA2 alert published today: https://www.krackattacks.com/, >> if I use an IPSec tunnel with shared-key or certifcate or an OpenVPN >> connection to authenticate and protect clients and hostAP comms, is >> this vulnerability mitigated? > > Also this was *NOT* a protocol bug. > arstechnica claimed such nonesense without any basis in fact and > now everybody keeps repeating it :( > > It was an implementation bug.
What is the relevant language from the spec? Thanks, -- Raul
