Below is an announcement of an IETF BOF next week on SBSM
(Session Based Security Model) for SNMPv3, which SOLVES
the key distribution problem of SNMPv3 by creating real
sessions between SNMP clients (managers) and SNMP servers
(devices) using EXISTING native operating system and
network environment password- and certificate-based
The SBSM model is likely to rapidly bring SNMPv3 strong
security into the mainstream of networked products in
the coming year.
The co-chair, Wes Hardaker, is an IETF Area Director and
the principal author of the Net-SNMP (formerly UCSD-SNMP)
open software SNMPv3 libraries (also noteworthy).
The other co-chair, David Perkins, is the well-known
author of the state-of-the-art SMICng MIB compiler.
Ira McDonald (Musician / Software Architect)
Blue Roof Music / High North Inc
PO Box 221 Grand Marais, MI 49839
email: imcdonald at sharplabs.com
From: Wes Hardaker [mailto:hardaker at tislabs.com]
Sent: Wednesday, November 05, 2003 10:22 PM
To: ietf at ietf.org
Cc: snmpv3 at lists.tislabs.com
Subject: BOF Announcement: A Session-based Security Model for SNMP
Session Based Security Model for SNMPv3 BOF (sbsm)
Wednesday, November 12 at 1530-1730
BOF CHAIRS: Wes Hardaker <hardaker at tislabs.com>
David Perkins <dperkins at dsperkins.com>
From the Abstract:
This document describes a Session Based Security Model (SBSM)
for use within the Simple Network Management Protocol (SNMP).
The security model is designed to establish a "session" between
two interacting hosts, over which SNMP operations can be sent.
It provides a number of security properties not previously
available in [currently] defined SNMP security models, such as
public key based authentication, limited life-time keying, and
the ability to make use of previously implemented and deployed
security infrastructures for purposes of identification and
Draft agenda for the BOF:
Agenda Bashing 5 min
Introduction to the problem space 10 min
draft-hardaker-snmp-session-sm-00.txt 20 min
Discussion remaining time
sbsm at machshav.com
sbsm-request at machshav.com
Archive and general information:
Description of Working Group:
The SBSM working group will focus on creating a new session-based
security model [for SNMPv3] that will meet the security and
operational needs of network administrators.
- A document describing a session-based security model for the
Goals and Milestones:
Mar 04 Initial draft(s) defining the SBSM security model
to be completed so reference implementations can begin.
Nov 04 Work submitted to the IESG to publish as a proposed standard RFC.