Path: utzoo!utgpu!jarvis.csri.toronto.edu!cs.utexas.edu!tut.cis.ohio-state.edu!ucbvax!TIS.COM!galvin From: galvin@TIS.COM (James M Galvin) Newsgroups: comp.protocols.tcp-ip Subject: Re: Authentication for SNMP - Are there any standards? Message-ID: <24454.635183454@tis.com> Date: 16 Feb 90 15:50:54 GMT References: Sender: daemon@ucbvax.BERKELEY.EDU Reply-To: James M Galvin Organization: The Internet Lines: 31 In reading the SNMP RFCs I find mention of authentication of PDUs. Are there any standards for authentication mechanisms. I have not seen a reply on the TCP-IP list, so let me do that. There is currently work in progress, which is closing fast, to define 3 authentication mechanisms. The first is just a recasting of the trivial authentication identified in the SNMP specification. The remaining two are an integrity mechanism and mechanism that supports both integrity and confidentiality. The draft of the first document is available via anonymous FTP from nic.ddn.mil in the internet-drafts: directory. You can not miss it. There are 2 supporting documents to the specification that will be appearing shortly. They were all distributed at the IETF meeting last week. Following some final editing they will also become Internet drafts. The 3 documents could be described as follows: 1. How to do integrity and confidentiality assuming the existence of the necessary secrets (for example the cryptographic key). 2. How to distribute the necessary secrets. 3. What MIB objects are useful to documents 1 and 2. Jim PS. I am one of the authors of all three documents.