Re: [saag] How the cipher negotiation in snmpv3 will happen?
Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de> Sun, 13 September 2015 14:23 UTC
Return-Path: <j.schoenwaelder@jacobs-university.de>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BE9CC1B2CD0 for <saag@ietfa.amsl.com>; Sun, 13 Sep 2015 07:23:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.539
X-Spam-Level:
X-Spam-Status: No, score=0.539 tagged_above=-999 required=5 tests=[BAYES_40=-0.001, HELO_EQ_DE=0.35, RCVD_IN_DNSWL_MED=-2.3, T_RP_MATCHES_RCVD=-0.01, URIBL_DBL_ABUSE_BOTCC=2.5] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QbgySUPplXyp for <saag@ietfa.amsl.com>; Sun, 13 Sep 2015 07:23:48 -0700 (PDT)
Received: from atlas3.jacobs-university.de (atlas3.jacobs-university.de [212.201.44.18]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0C8A11AD218 for <saag@ietf.org>; Sun, 13 Sep 2015 07:23:48 -0700 (PDT)
Received: from localhost (demetrius5.irc-it.jacobs-university.de [10.70.0.222]) by atlas3.jacobs-university.de (Postfix) with ESMTP id 5A1B52E3D; Sun, 13 Sep 2015 16:23:46 +0200 (CEST)
X-Virus-Scanned: amavisd-new at jacobs-university.de
Received: from atlas3.jacobs-university.de ([10.70.0.220]) by localhost (demetrius5.jacobs-university.de [10.70.0.222]) (amavisd-new, port 10030) with ESMTP id 4dMd5Odabvkp; Sun, 13 Sep 2015 16:23:46 +0200 (CEST)
Received: from hermes.jacobs-university.de (hermes.jacobs-university.de [212.201.44.23]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "hermes.jacobs-university.de", Issuer "Jacobs University CA - G01" (verified OK)) by atlas3.jacobs-university.de (Postfix) with ESMTPS; Sun, 13 Sep 2015 16:23:46 +0200 (CEST)
Received: from localhost (demetrius3.jacobs-university.de [212.201.44.48]) by hermes.jacobs-university.de (Postfix) with ESMTP id DCA772004E; Sun, 13 Sep 2015 16:23:45 +0200 (CEST)
X-Virus-Scanned: amavisd-new at jacobs-university.de
Received: from hermes.jacobs-university.de ([212.201.44.23]) by localhost (demetrius3.jacobs-university.de [212.201.44.32]) (amavisd-new, port 10024) with ESMTP id sauAeQlt4OVF; Sun, 13 Sep 2015 16:23:45 +0200 (CEST)
Received: from elstar.local (elstar.jacobs.jacobs-university.de [10.50.231.133]) by hermes.jacobs-university.de (Postfix) with ESMTP id 80C0E20048; Sun, 13 Sep 2015 16:23:43 +0200 (CEST)
Received: by elstar.local (Postfix, from userid 501) id F0D1E3707B3C; Sun, 13 Sep 2015 16:23:39 +0200 (CEST)
Date: Sun, 13 Sep 2015 16:23:39 +0200
From: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>
To: Sarat G <sarath.ginjupalli89@gmail.com>
Message-ID: <20150913142339.GA44966@elstar.local>
Mail-Followup-To: Sarat G <sarath.ginjupalli89@gmail.com>, saag@ietf.org
References: <CANNyqrz39FYmqU__7X_4__1pDk1AWuu1raXZreakhGCasiRvzg@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <CANNyqrz39FYmqU__7X_4__1pDk1AWuu1raXZreakhGCasiRvzg@mail.gmail.com>
User-Agent: Mutt/1.4.2.3i
Archived-At: <http://mailarchive.ietf.org/arch/msg/saag/UfugWcqmNEdtAYmQDbU5kM0F0uQ>
Cc: saag@ietf.org
Subject: Re: [saag] How the cipher negotiation in snmpv3 will happen?
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 13 Sep 2015 14:23:49 -0000
On Sun, Sep 13, 2015 at 07:36:37PM +0530, Sarat G wrote: > Hi, > I'm working on snmpv3. In the RFC and internet I haven't seen any > documentation regarding how the encryption and hashing algorithms exchanged > between the entities. I wonder will there be any cipher negotiation happens > in SNMPv3 or both parties should agree upon a specific set of algorithms > prior to the communication and use them? > Please apologize and discard if this is not right platform to post this > question. The SNMPv3 security algorithms are pre-configured and not negotiated, except when you use SNMP over TLS or SNMP over SSH. /js -- Juergen Schoenwaelder Jacobs University Bremen gGmbH Phone: +49 421 200 3587 Campus Ring 1 | 28759 Bremen | Germany Fax: +49 421 200 3103 <http://www.jacobs-university.de/>
- [saag] How the cipher negotiation in snmpv3 will … Sarat G
- Re: [saag] How the cipher negotiation in snmpv3 w… Juergen Schoenwaelder