Path: utzoo!utgpu!news-server.csri.toronto.edu!rutgers!att!ucbvax!europa.clearpoint.COM!kasten
From: kasten@europa.clearpoint.COM (Frank Kastenholz)
Newsgroups: comp.protocols.tcp-ip
Subject: (none)
Message-ID: <9102152000.AA02102@europa.clearpoint.com>
Date: 15 Feb 91 20:00:34 GMT
Sender: daemon@ucbvax.BERKELEY.EDU
Organization: The Internet
Lines: 33


 > 
 > [stuff deleted about sucrity in SNMP, sets, and the like]
 >
 > I hear that there's an SNMP Authentication RFC somewhere in the mill.
 > Perhaps someone else can shed some light on that.  
 >
There are four documents under development by the SNMP
security working group. They are currently available as
INTERNET-DRAFTS. The names are:
	 draft-ietf-snmpauth-authsnmp-02.txt
	 draft-ietf-snmpauth-communities-01.txt
	 draft-ietf-snmpauth-manageobject-02.txt
	 draft-ietf-snmpauth-uu-00.txt

These documents describe three schemes for SNMP security:
	1 - trivial -- the current scheme
	2 - authenticated -- provides assurance that
	    the SNMP PDU came from who it purports to
 	    come from and that it has not been tampered
            with along the way, and
        3 - Private -- like authenticated, but is also
            encrypted so as to provide privacy.

Every effort is being made to complete these documents as
soon as possible and have them sent up to the IAB for
publication as an RFC with "Proposed Standard" status.
There is some expectation that this will be accomplished
at the next IETF meeting (in about a month).

Cheers
Frank Kastenholz
Clearpoint Research Corp.