...
Blumenthal implementation of SNMPv3 AES256 :
- AES128 now accepts the additional protocol string
...
- Since the object definitions have not been
standardized, they have been based on the Extended Security Options
Consortium MIB found at http://www.snmp.com/eso/esoConsortiumMIB.txt.
...
- AES128 (for OID 1.3.6.1.4.1.14832.1.2)
- AES192 now accepts the additional protocol string AES192 (for OID 1.3.6.1.4.1.14832.1.3)
- AES256 now accepts the additional protocol string AES256 (for OID 1.3.6.1.4.1.14832.1.4)
- Since the object definitions have not been
standardized, they have been based on the Extended Security Options
Consortium MIB found at http://www.snmp.com/eso/esoConsortiumMIB.txt.
Cisco implementation of SNMPv3 AES256, which is introduced in this patch
- accepts only one protocol string AES192C (for OID 1.3.6.1.4.1.9.12.6.1.1)
- accepts only one protocol string AES256C (for OID 1.3.6.1.4.1.9.12.6.1.2)
- accepts only one protocol string AES192C2 (for OID 1.3.6.1.4.1.9.12.6.1.101)
- accepts only one protocol string AES256C2 (for OID 1.3.6.1.4.1.9.12.6.1.102)
- Reeder AES encryption with non-standard key localization algorithm
borrowed from Reeder 3DES draft:
http://tools.ietf.org/html/draft-blumenthal-aes-usm-04
https://tools.ietf.org/html/draft-reeder-snmpv3-usm-3desede-00
...