For testing#, I have a 5GHz SSID set to use only WPA3/SAE, the
router/access point is a Draytek 2865ac with latest firmware.

Laptops connect happily, an old Android 9 tablet misinterprets it as
802.1x so cannot connect, my up-to-date Pixel8a sees it, asks for the
PSK but fails to connect and asks again.

Does anyone have an Android* device device which they KNOW is using WPA3 (either by choice, or because there is no other option)?



[*] I believe it needs to be Android 10 or newer to use WPA3

[#] Any suggestions to say "use WPA2" or "use mixed WPA2/WPA3 mode" are
missing the point.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Sat, 19 Apr 2025 13:38:50 +0100, Andy Burns wrote:

Does anyone have an Android* device device which they KNOW is using WPA3 (either by choice, or because there is no other option)?

Google Pixel 8a, Android 15 (according to Settings ╗ About phone).

Under Settingsá╗ Internetá╗ Network Details: "Security WPA3-
Personal".

I didn't do anything special to get WPA3 in December when I got this
phone, just tapped the network name and when prompted entered the
password. I have a combined modem/router from my ISP, Race
Communications, so they must have set it up to serve WPA3.

--
Stan Brown, Tehachapi, California, USA https://BrownMath.com/
Shikata ga nai...

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Stan Brown wrote:

Google Pixel 8a, Android 15 (according to Settings » About phone).

Under Settings » Internet » Network Details: "Security WPA3-
Personal".

I didn't do anything special to get WPA3 in December when I got this
phone, just tapped the network name and when prompted entered the
password. I have a combined modem/router from my ISP, Race
Communications, so they must have set it up to serve WPA3.

Thanks for confirming, I thought I'd used it before (not here) but can't
get my combo of router and phone to play nicely with WPA3.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Andy Burns wrote:

I thought I'd used it before (not here) but can't get my combo of router
and phone to play nicely with WPA3.

And today, it's quite happy to connect to either a mixed WPA2/WPA3 SSID
(as WPA3) or to a WPA3-only SSID ...

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Sun, 20 Apr 2025 12:02:26 +0100, Andy Burns wrote :

I thought I'd used it before (not here) but can't get my combo of router
and phone to play nicely with WPA3.

And today, it's quite happy to connect to either a mixed WPA2/WPA3 SSID
(as WPA3) or to a WPA3-only SSID ...

I can't even spell WPA3, but it's nice to know you're all set, I think.

To strive to add value nonetheless, apparently WPA3 has Simultaneous Authentication of Equals (SAE) which is better (supposedly) than PSK.

Also WPA3 can optionally employ a 192-bit security mode, aligning with the Commercial National Security Algorithm (CNSA) suite, which is (supposedly) better'n AES.

Apparently SAE makes butteryfly hash tables (perhaps) a thing of the past, since each password guess requires interaction with the network and since
the four-way handshake in WPA2 is eliminated.

A new buzzword for WPA3 is Opportunistic Wireless Encryption (OWE) which
allows encryption even for open networks (which WPA2 didn't allow for).

Yet another buzzword, you heard it first here, is Perfect Forward Secrecy
(PFS) which means a compromised network is only compromised moving forward (apparently).

While in WPA2, PMF was optional, Protected Management Frames are now
mandatory with WPA3. And, as Andy did NOT find out, WPA3 includes features
like Device Provisioning Protocol (DPP) which supposedly simplifies the
process of connecting new devices, including IoT devices with limited or no display, often using QR codes or NFC.

Whew. Who knew. Not me.
I'm just glad Andy & Stan are breaking the new ground for us, and not me.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)