Hello,
do you confirm that SNMP4J supports SNMPv3 USM AES-256 based privacy out of the box based on draft-blumenthal-aes-usm-04 (ietf.org)?
Is my understanding correct that this MIB snmp.com/eso/esoConsortiumMIB.txt is not supported and not needed by SNMP4J to support AES-256?
Thanks
Best Regards
/Vincent
Yes, I confirm. AES-256 is supported in two different flavours:
- DRAFT-BLUMENTAL-AUS-USM-04: AuthHMAC192SHA256 (SNMP4J 3.7.7)
- Non-Standard: PrivAES256With3DESKeyExtension (SNMP4J 3.7.7)
May I ask you an additional question. Could you direct me to a page summarizing what auth and privacy mechanisms are supported by SNMP4J 3.7.7 (and based on which standard when applicable)?
I found this page What standards (RFCs) are covered by SNMP++/AGENT++? - AGENT++ - AGENTPP but I guess it is not applicable to SNMP4J right?
Best Regards
/Vincent
Thanks for a quick answer! Really appreciated
Best Regards
/Vincent
You find it here:
https://doc.snmp.app/plugins/servlet/mobile?contentId=5799943#content/view/5799943
Thanks for the clarification!
Based on the link you provided above, I assume that the org.snmp4j.security package description (both text and class diagram) is not fully up to date, right?
See org.snmp4j.security (SNMP4J 3.7.7) (agentpp.com)
It is up-to-date because it covers the „standard“ only. AES based privacy is not a IETF STANDARD yet.