I know this is a NANOG forum but curious how widespread usage of MACsec
might be. (https://1.ieee802.org/security/802-1ae/).Currently reading
the spec but wanted to pose some questions.
I'm seeing some pitfalls:
1) May not work over wireless LAN devices?
2) Needs a centralized key server.
3) May not be supportable on all devices?
Purported to be faster on the LAN than IPsec because MACsec is on layer 2.
Thoughts?