Presentation is loading. Please wait.

Presentation is loading. Please wait.

Transport Mapping Security Model D. Harrington. Architecture Transport Mapping Dispatcher Message Processing Model ApplicationsAccess Control Model TM.

Published byJane Waters Modified over 8 years ago

Similar presentations

Presentation on theme: "Transport Mapping Security Model D. Harrington. Architecture Transport Mapping Dispatcher Message Processing Model ApplicationsAccess Control Model TM."— Presentation transcript:

1 Transport Mapping Security Model D. Harrington

2 Architecture Transport Mapping Dispatcher Message Processing Model ApplicationsAccess Control Model TM portion of TMSM MP portion of TMSM

3 Lower Layer Protocols Many protocols might suffice –TLS –DTLS –SASL –SSH –Others Transport Mapping provides interface between protocols and SNMP engine

4 Lower Layer Protocols Protocols might provide different sets of services, to different degrees –authentication –encryption –timeliness checking –data integrity –others

5 Transport Mapping Security Model TM provides interface between lower layer protocol(s) and SNMP engine TM-SM needs to reliably coordinate and report on the services provided –Which services? (auth, priv, others) –Security Principal (~securityName) –Which mechanisms? (security sub-models)

6 Transport Mapping Security Model TM portion interfaces between transport security protocol and the SNMP engine MP portion exists to insert data into the process at the appropriate points vis-à-vis RFC3411/3412

7 Architecture Transport Mapping Dispatcher Message Processing Model Applications Access Control Model TM portion of TMSM MP portion of TMSM

8 TM portion Gets model-specific/mechanism-specific security principal from protocol Determines services provided by protocol Caches transport and security information needed for responses or reports

9 MP portion Maps model-specific/mechanism-specific security principal to securityName Determines acceptability and mapping of services provided to SNMP requirements (authPriv, etc.) May provide additional analysis of services provided Passes the info to the message processing model (e.g. SNMPv3-message processing model)

10 Questions?

Download ppt "Transport Mapping Security Model D. Harrington. Architecture Transport Mapping Dispatcher Message Processing Model ApplicationsAccess Control Model TM."

Similar presentations

XP Processor Intermediary XP Processor Intermediary XP Processor Application Message (Application Headers+ Application Bodies) XP Layer Entity XP Layer.

XP Processor Intermediary XP Processor Intermediary XP Processor Application Message (Application Headers+ Application Bodies) XP Layer Entity XP Layer.
External User Security Model (EUSM) for SNMPv3 draft-kaushik-snmp-external-usm-00.txt November, 2004.

External User Security Model (EUSM) for SNMPv3 draft-kaushik-snmp-external-usm-00.txt November, 2004.
TLS. 14.1 Introduction 14.2 TLS Record Protocol 14.3 TLS Handshake Protocol 14.4 Summary.

TLS Introduction 14.2 TLS Record Protocol 14.3 TLS Handshake Protocol 14.4 Summary.
Securing Network Communication. 2 Security Issues in Communication Privacy  Anyone can see content Integrity  Someone might alter content Authentication.

Securing Network Communication. 2 Security Issues in Communication Privacy  Anyone can see content Integrity  Someone might alter content Authentication.
Dispatcher IO TestlinkDispatcher TEEBEE Required TEEs XSLT 1. Testlink XML 3. Get Asset Build Id 6. Bee Build result* 8. Testlink XML 9. Tee specific input.

Dispatcher IO TestlinkDispatcher TEEBEE Required TEEs XSLT 1. Testlink XML 3. Get Asset Build Id 6. Bee Build result* 8. Testlink XML 9. Tee specific input.
EE 4272Spring, 2003 Protocols & Architecture A Protocol Architecture is the layered structure of hardware & software that supports the exchange of data.

EE 4272Spring, 2003 Protocols & Architecture A Protocol Architecture is the layered structure of hardware & software that supports the exchange of data.
COS 420 DAY 24. Agenda Assignment 5 posted Chap 22-26 Due May 4 Final exam will be take home and handed out May 4 and Due May 10 Student evaluations Latest.

COS 420 DAY 24. Agenda Assignment 5 posted Chap Due May 4 Final exam will be take home and handed out May 4 and Due May 10 Student evaluations Latest.
Seguridad en Sistemas de Información Francisco Rodríguez Henríquez SSL/TLS: An Introduction.

Seguridad en Sistemas de Información Francisco Rodríguez Henríquez SSL/TLS: An Introduction.
Integrated Security Model for SNMPv3 (ISMS) pronounced is miss David T. Perkins & Wes Hardaker 60 th IETF August 6, 2004.

Integrated Security Model for SNMPv3 (ISMS) pronounced "is" "miss" David T. Perkins & Wes Hardaker 60 th IETF August 6, 2004.
1 Based on Behzad Akbari Fall 2011 Network Management lectures and These slides are based in parts upon slides of Prof. Dssouli (Concordia university )

1 Based on Behzad Akbari Fall 2011 Network Management lectures and These slides are based in parts upon slides of Prof. Dssouli (Concordia university )
SNMPv3 Yen-Cheng Chen Department of Information Management National Chi Nan University

SNMPv3 Yen-Cheng Chen Department of Information Management National Chi Nan University
Session-based Security Model for SNMPv3 (SNMPv3/SBSM) David T. Perkins Wes Hardaker IETF November 12, 2003.

Session-based Security Model for SNMPv3 (SNMPv3/SBSM) David T. Perkins Wes Hardaker IETF November 12, 2003.
Lecture slides prepared for “Business Data Communications”, 7/e, by William Stallings and Tom Case, Chapter 8 “TCP/IP”.

Lecture slides prepared for “Business Data Communications”, 7/e, by William Stallings and Tom Case, Chapter 8 “TCP/IP”.
On the Impact of Security Protocols on the Performance of SNMP J. Schonwalder and V. Marinov IEEE Transactions on Network and Service Management, 2011,

On the Impact of Security Protocols on the Performance of SNMP J. Schonwalder and V. Marinov IEEE Transactions on Network and Service Management, 2011,
ECE-6612 Prof. John A. Copeland 404 894-5177 Office: Klaus 3362 or call.

ECE Prof. John A. Copeland Office: Klaus or call.
1 School of Computer, National University of Defense Technology A Profile on the Grid Data Engine (GridDaEn) Xiao Nong

1 School of Computer, National University of Defense Technology A Profile on the Grid Data Engine (GridDaEn) Xiao Nong
Marwan Al-Namari Week 4. Physical Path Application Presentation Session Transport Network Data Link Physical Application Presentation Session Transport.

Marwan Al-Namari Week 4. Physical Path Application Presentation Session Transport Network Data Link Physical Application Presentation Session Transport.
XMPP – Extensible Messaging and Presence Protocol Vidya Satyanarayanan.

XMPP – Extensible Messaging and Presence Protocol Vidya Satyanarayanan.
Slide 1 SNMPv3, SSH & Cisco Matthew G. Marsh Chief Scientist of the NEbraskaCERT.

Slide 1 SNMPv3, SSH & Cisco Matthew G. Marsh Chief Scientist of the NEbraskaCERT.
© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod9_L8 1 Network Security 2 Module 7 – Secure Network Architecture and Management.

© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod9_L8 1 Network Security 2 Module 7 – Secure Network Architecture and Management.

Similar presentations

Ads by Google