Context Driven Access Control to SNMP MIB Objects in Multi-homed Environments

The advent of multi-technology networks offering the service continuum over multiple network infrastructures implies new challenges to integrated management. One of these challenges is the auto-configuration of the management plane needed to allow dynamic relationships among several managers and one management agent. This paper proposes the use of provisional policies in order to dynamically auto-configure the access control part of a management agent. This allows simple management based on agent location and time as well as the cooperative behavior of several managers.

[1]  Bruce Schneier,et al.  Applied cryptography : protocols, algorithms, and source codein C , 1996 .

[2]  Bert Wijnen,et al.  An Architecture for Describing Simple Network Management Protocol (SNMP) Management Frameworks , 2002, RFC.

[3]  Sushil Jajodia,et al.  Provisional Authorizations , 2001, E-Commerce Security and Privacy.

[4]  Jim Boyle,et al.  Accept-Ranges : bytes Content-Length : 55967 Connection : close Content-Type : text / plain Internet Draft , 2012 .

[5]  William Stallings,et al.  SNMP, SNMPv2, SNMPv3, and RMON 1 and 2 , 1999 .

[6]  Uri Blumenthal,et al.  User-based Security Model (USM) for version 3 of the Simple Network Management Protocol (SNMPv3) , 1998, RFC.

[7]  Michiharu Kudo,et al.  XML document security based on provisional authorization , 2000, CCS.

[8]  Mark Handley,et al.  Session Announcement Protocol , 2000, RFC.

[9]  Keith McCloghrie,et al.  COPS Usage for Policy Provisioning (COPS-PR) , 2001, RFC.

[10]  Alan D. Ross,et al.  Network Security Essentials , 2003 .

[11]  E. Guttman,et al.  Autoconfiguration for IP networking: enabling local communication , 2001 .

[12]  Yechiam Yemini,et al.  Towards self-configuring networks , 2002, Proceedings DARPA Active Networks Conference and Exposition.

[13]  Ralph Droms,et al.  The DHCP Handbook , 2002 .

[14]  Charles E. Perkins,et al.  Service Location Protocol, Version 2 , 1999, RFC.

[15]  Mark Bakke DHCP Option for SNMP Notifications , 2002 .

[16]  Nicodemos Constantinou Damianou,et al.  A policy framework for management of distributed systems , 2002 .