Difference between revisions of "ISMS"
From Net-SNMP Wiki
ClausKlein (Talk | contribs) m |
|||
Line 1: | Line 1: | ||
The Integrated Security Model for SNMP ('''ISMS''') working group was [http://www.ietf.org/html.charters/isms-charter.html chartered] with developing a security infrastructure that used native authentication mechanisms, rather than relying on a completely independent user base like [[USM]] does. The working group has produced multiple documents defining the resulting solution and architecture. In particular it has produced: | The Integrated Security Model for SNMP ('''ISMS''') working group was [http://www.ietf.org/html.charters/isms-charter.html chartered] with developing a security infrastructure that used native authentication mechanisms, rather than relying on a completely independent user base like [[USM]] does. The working group has produced multiple documents defining the resulting solution and architecture. In particular it has produced: | ||
− | * A '''Transport Security Model''' (TSM) responsible for assuring incoming packets were tunnelled properly and outgoing packets are sent through the right tunnel. (yes, this is an oversimplification...) | + | * A '''Transport Security Model''' ([[TSM]]) responsible for assuring incoming packets were tunnelled properly and outgoing packets are sent through the right tunnel. (yes, this is an oversimplification...) |
* A [[SSH]] transport model that defines how SNMP messages should be sent over SSH. | * A [[SSH]] transport model that defines how SNMP messages should be sent over SSH. | ||
* A radius document... description missing at the moment. | * A radius document... description missing at the moment. |
Latest revision as of 20:11, 5 August 2011
The Integrated Security Model for SNMP (ISMS) working group was chartered with developing a security infrastructure that used native authentication mechanisms, rather than relying on a completely independent user base like USM does. The working group has produced multiple documents defining the resulting solution and architecture. In particular it has produced:
- A Transport Security Model (TSM) responsible for assuring incoming packets were tunnelled properly and outgoing packets are sent through the right tunnel. (yes, this is an oversimplification...)
- A SSH transport model that defines how SNMP messages should be sent over SSH.
- A radius document... description missing at the moment.
Also written but not yet approved as a working group document:
- A DTLS transport model that defines how SNMP messages should be sent over DTLS.