User-based Security Model
E233769
The User-based Security Model is a framework for providing authentication, privacy, and access control in SNMPv3 by defining security based on individual user identities and associated cryptographic keys.
All labels observed (1)
| Label | Occurrences |
|---|---|
| User-based Security Model canonical | 5 |
Statements (46)
| Predicate | Object |
|---|---|
| instanceOf |
SNMP security model
ⓘ
network management security framework ⓘ |
| abbreviation | USM ⓘ |
| acronymOf | User-based Security Model self-link ⓘ |
| appliesTo |
SNMP agents
ⓘ
SNMP managers ⓘ |
| associatedWith | SNMP engine ⓘ |
| basedOn | individual user identities ⓘ |
| category |
network management
ⓘ
network security ⓘ |
| configuredThrough | SNMP MIB objects ⓘ |
| definedIn | SNMPv3 ⓘ |
| designGoal |
fine-grained user-level security
ⓘ
interoperable SNMP security ⓘ |
| introducedWith | SNMPv3 standardization ⓘ |
| manages |
SNMP security users
ⓘ
user security parameters ⓘ |
| partOf |
An Architecture for Describing Simple Network Management Protocol (SNMP) Management Frameworks
ⓘ
surface form:
SNMPv3 security architecture
|
| provides |
access control support
ⓘ
authentication ⓘ privacy ⓘ |
| relatedTo | View-based Access Control Model ⓘ |
| replaces | community-based security in earlier SNMP versions ⓘ |
| scope |
SNMP message-level security
ⓘ
SNMP ⓘ
surface form:
Simple Network Management Protocol
|
| securityLevels |
authNoPriv
ⓘ
authPriv ⓘ noAuthNoPriv ⓘ |
| securityModelIdentifier |
USM
ⓘ
surface form:
usm(3)
|
| standardizedIn | RFC 3414 ⓘ |
| supports |
key change procedures
ⓘ
message confidentiality ⓘ message integrity ⓘ message origin authentication ⓘ multiple security levels ⓘ per-user authentication keys ⓘ per-user privacy keys ⓘ per-user security configuration ⓘ protection against message replay ⓘ |
| uses |
CBC-DES privacy protocol
ⓘ
HMAC ⓘ
surface form:
HMAC-MD5-96 authentication protocol
HMAC-SHA-96 authentication protocol ⓘ cryptographic keys ⓘ engineID ⓘ localized keys derived from user passwords ⓘ time synchronization for replay protection ⓘ |
Referenced by (5)
Full triples — surface form annotated when it differs from this entity's canonical label.