RFC 3414 USM for SNMPv3 December 2002 1.6.1. User-based Security Model Primitives for Authentication.................................... 11 1.6.2. User-based Security Model Primitives for Privacy........................................... 12 2. Elements of the Model................................. 12 2.1. User-based Security Model Users....................... 12 2.2. Replay Protection..................................... 13 2.2.1. msgAuthoritativeEngineID.............................. 14 2.2.2. msgAuthoritativeEngineBoots and msgAuthoritativeEngineTime............................ 14 2.2.3. Time Window........................................... 15 2.3. Time Synchronization.................................. 15 2.4. SNMP Messages Using this Security Model............... 16 2.5. Services provided by the User-based Security Model.... 17 2.5.1. Services for Generating an Outgoing SNMP Message...... 17 2.5.2. Services for Processing an Incoming SNMP Message...... 20 2.6. Key Localization Algorithm............................ 22 3. Elements of Procedure................................. 22 3.1. Generating an Outgoing SNMP Message................... 22 3.2. Processing an Incoming SNMP Message................... 26 4. Discovery............................................. 31 5. Definitions........................................... 32 6. HMAC-MD5-96 Authentication Protocol................... 51 6.1. Mechanisms............................................ 51 6.1.1. Digest Authentication Mechanism....................... 51 6.2. Elements of the Digest Authentication Protocol........ 52 6.2.1. Users................................................. 52 6.2.2. msgAuthoritativeEngineID.............................. 53 6.2.3. SNMP Messages Using this Authentication Protocol...... 53 6.2.4. Services provided by the HMAC-MD5-96 Authentication Module................................. 53 6.2.4.1. Services for Generating an Outgoing SNMP Message...... 53 6.2.4.2. Services for Processing an Incoming SNMP Message...... 54 6.3. Elements of Procedure................................. 55 6.3.1. Processing an Outgoing Message........................ 55 6.3.2. Processing an Incoming Message........................ 56 7. HMAC-SHA-96 Authentication Protocol................... 57 7.1. Mechanisms............................................ 57 7.1.1. Digest Authentication Mechanism....................... 57 7.2. Elements of the HMAC-SHA-96 Authentication Protocol... 58 7.2.1. Users................................................. 58 7.2.2. msgAuthoritativeEngineID.............................. 58 7.2.3. SNMP Messages Using this Authentication Protocol...... 59 7.2.4. Services provided by the HMAC-SHA-96 Authentication Module................................. 59 7.2.4.1. Services for Generating an Outgoing SNMP Message...... 59 7.2.4.2. Services for Processing an Incoming SNMP Message...... 60 7.3. Elements of Procedure................................. 61 Blumenthal & Wijnen Standards Track