If a router can support both WPA2 and WPA3 encryption (PSK), and also OWE for open networks, is there a way to set it up to allow a Guest network, that's Open, but limited to WPA3's OWE, such that you can run an open hotspot, but everyone that connects to it, has to use OWE, and can't just connect to it plaintext? At the same time as supporting WPA2 PSK/AES and WPA3 PSK for connections to same router, for protected connections?
My feeling is, if WPA3's OWE, allows encrypting each client's connection separately to the router, and it utilizes SAE and PFS, thus is not vulnerable to KRACK nor to sniffing and later offline cracking, then why bother putting a password on your wireless? I guess, unless you intentionally want to keep the neighbors out. I'm much more concerned about parties sniffing my wireless internet and scanning my data (privacy), rather than exclusive usage of a resource (I pay for gigabit, I don't mind sharing with my immediate physical neighbors if they want a little internet.)
Although, running an "open" hotspot, has it's own issues. I welcome anyone to suggest a UTM to pipe the connection through, to keep wandering war-drivers from using my connection to access "illegal" things online. Don't want to be getting DMCA notices from my ISP, nor having my door busted down, for things my neighbors might be doing with my connection.
Even better, would be in conjunction with a Hotspot-type login page, that requires logging some information to use the connection, for a limited time-span.
Edit: These guys don't seem very impressed with WPA3.
https://forum.dd-wrt.com/phpBB2/viewtopic.php?p=1114272
They don't seem to think that it's much of a panacea. I like the idea of SAE and PFS. I worry that my traffic is being slurped up by a Stinger-type system, and will eventually be offline-cracked, if it hasn't already. (Probably.) I also like the idea of being able to allow an "open" hotspot (with limitations), as a guest network for my neighbors, without exposing their data either.