draft-ietf-opsawg-hmac-sha-2-usm-snmp-04.txt   draft-ietf-opsawg-hmac-sha-2-usm-snmp-05.txt 
OPSAWG J. Merkle, Ed. OPSAWG J. Merkle, Ed.
Internet-Draft Secunet Security Networks Internet-Draft Secunet Security Networks
Intended status: Standards Track M. Lochter Intended status: Standards Track M. Lochter
Expires: September 24, 2015 BSI Expires: September 24, 2015 BSI
March 23, 2015 March 23, 2015
HMAC-SHA-2 Authentication Protocols in USM for SNMP HMAC-SHA-2 Authentication Protocols in USM for SNMP
draft-ietf-opsawg-hmac-sha-2-usm-snmp-04 draft-ietf-opsawg-hmac-sha-2-usm-snmp-05
Abstract Abstract
This memo specifies new HMAC-SHA-2 authentication protocols for the This memo specifies new HMAC-SHA-2 authentication protocols for the
User-based Security Model (USM) for SNMPv3 defined in RFC 3414. User-based Security Model (USM) for SNMPv3 defined in RFC 3414.
Status of This Memo Status of This Memo
This Internet-Draft is submitted in full conformance with the This Internet-Draft is submitted in full conformance with the
provisions of BCP 78 and BCP 79. provisions of BCP 78 and BCP 79.
skipping to change at page 7, line 9 skipping to change at page 7, line 9
The MIB module specified in this memo does not define any managed The MIB module specified in this memo does not define any managed
objects, subtrees, notifications or tables, but only object objects, subtrees, notifications or tables, but only object
identities (for authentication protocols) under a subtree of an identities (for authentication protocols) under a subtree of an
existing MIB. existing MIB.
7. Relationship to Other MIB Modules 7. Relationship to Other MIB Modules
7.1. Relationship to SNMP-USER-BASED-SM-MIB 7.1. Relationship to SNMP-USER-BASED-SM-MIB
RFC 3414 [RFC3414] specifies the MIB for the User-based Security RFC 3414 [RFC3414] specifies the MIB module for the User-based
Model (USM) for SNMPv3 (SNMP-USER-BASED-SM-MIB), which defines Security Model (USM) for SNMPv3 (SNMP-USER-BASED-SM-MIB), which
authentication protocols for USM based on the hash functions MD5 and defines authentication protocols for USM based on the hash functions
SHA-1, respectively. The following MIB module defines new HMAC-SHA2 MD5 and SHA-1, respectively. The following MIB module defines new
authentication protocols for USM based on the SHA-2 hash functions HMAC-SHA2 authentication protocols for USM based on the SHA-2 hash
[SHA]. The use of the HMAC-SHA2 authentication protocols requires functions [SHA]. The use of the HMAC-SHA2 authentication protocols
the usage of the objects defined in the SNMP-USER-BASED-SM-MIB. requires the usage of the objects defined in the SNMP-USER-BASED-SM-
MIB.
7.2. Relationship to SNMP-FRAMEWORK-MIB 7.2. Relationship to SNMP-FRAMEWORK-MIB
RFC 3411 [RFC3411] specifies the The SNMP Management Architecture MIB RFC 3411 [RFC3411] specifies the SNMP-FRAMEWORK-MIB, which defines a
(SNMP-FRAMEWORK-MIB), which defines a subtree snmpAuthProtocols for subtree snmpAuthProtocols for SNMP authentication protocols. The
SNMP authentication protocols. The following MIB module defines new following MIB module defines new authentication protocols in the
authentication protocols in the snmpAuthProtocols subtree. snmpAuthProtocols subtree.
Therefore, the use of the HMAC-SHA2 authentication protocols requires
the usage of the objects defined in the SNMP-FRAMEWORK-MIB.
7.3. MIB modules required for IMPORTS 7.3. MIB modules required for IMPORTS
The following MIB module IMPORTS objects from SNMPv2-SMI [RFC2578] The following MIB module IMPORTS definitions from SNMPv2-SMI
and SNMP-FRAMEWORK-MIB [RFC3411]. [RFC2578] and SNMP-FRAMEWORK-MIB [RFC3411].
8. Definitions 8. Definitions
SNMP-USM-HMAC-SHA2-MIB DEFINITIONS ::= BEGIN SNMP-USM-HMAC-SHA2-MIB DEFINITIONS ::= BEGIN
IMPORTS IMPORTS
MODULE-IDENTITY, OBJECT-IDENTITY, MODULE-IDENTITY, OBJECT-IDENTITY,
snmpModules FROM SNMPv2-SMI -- [RFC2578] snmpModules FROM SNMPv2-SMI -- [RFC2578]
snmpAuthProtocols FROM SNMP-FRAMEWORK-MIB; -- [RFC3411] snmpAuthProtocols FROM SNMP-FRAMEWORK-MIB; -- [RFC3411]
snmpUsmHmacSha2MIB MODULE-IDENTITY snmpUsmHmacSha2MIB MODULE-IDENTITY
 End of changes. 4 change blocks. 
16 lines changed or deleted 15 lines changed or added

This html diff was produced by rfcdiff 1.42. The latest version is available from http://tools.ietf.org/tools/rfcdiff/