Difference between revisions of "ISMS"

From Net-SNMP Wiki
Jump to: navigation, search
 
m
 
Line 1: Line 1:
 
The Integrated Security Model for SNMP ('''ISMS''') working group was [http://www.ietf.org/html.charters/isms-charter.html chartered] with developing a security infrastructure that used native authentication mechanisms, rather than relying on a completely independent user base like [[USM]] does.  The working group has produced multiple documents defining the resulting solution and architecture.  In particular it has produced:
 
The Integrated Security Model for SNMP ('''ISMS''') working group was [http://www.ietf.org/html.charters/isms-charter.html chartered] with developing a security infrastructure that used native authentication mechanisms, rather than relying on a completely independent user base like [[USM]] does.  The working group has produced multiple documents defining the resulting solution and architecture.  In particular it has produced:
  
* A '''Transport Security Model''' (TSM) responsible for assuring incoming packets were tunnelled properly and outgoing packets are sent through the right tunnel.  (yes, this is an oversimplification...)
+
* A '''Transport Security Model''' ([[TSM]]) responsible for assuring incoming packets were tunnelled properly and outgoing packets are sent through the right tunnel.  (yes, this is an oversimplification...)
 
* A [[SSH]] transport model that defines how SNMP messages should be sent over SSH.
 
* A [[SSH]] transport model that defines how SNMP messages should be sent over SSH.
 
* A radius document...  description missing at the moment.
 
* A radius document...  description missing at the moment.

Latest revision as of 20:11, 5 August 2011

The Integrated Security Model for SNMP (ISMS) working group was chartered with developing a security infrastructure that used native authentication mechanisms, rather than relying on a completely independent user base like USM does. The working group has produced multiple documents defining the resulting solution and architecture. In particular it has produced:

  • A Transport Security Model (TSM) responsible for assuring incoming packets were tunnelled properly and outgoing packets are sent through the right tunnel. (yes, this is an oversimplification...)
  • A SSH transport model that defines how SNMP messages should be sent over SSH.
  • A radius document... description missing at the moment.

Also written but not yet approved as a working group document:

  • A DTLS transport model that defines how SNMP messages should be sent over DTLS.