Using public WPA2 Enterprise credentials for public Wi-Fi
In South Korea, I've seen a couple of public Wi-Fi networks advertise a "secure" option. Stickers on public buses in Seoul and the captive portal login page for unencrypted Wi-Fi instruct users to connect to a secure option (e.g., KTX-WiFi-Secure instead of KTX-WiFi-Free). Those networks appear to use WPA2 Enterprise. However, both the username and the password are the same for all users, usually wifi / wifi. Both networks I've connected to asked me to trust some Radius certificate.
Based on my initial research, this would prevent eavesdropping on other users' traffic unless an attacker actively spoofs the network for a MITM attack. Is there a reason why more places haven't adopted this approach to provide customers with more secure public Wi-Fi?
