Skip to main content

Simpler and More Secure Architectures for SNMPv3

Document Type Expired Internet-Draft (individual)
Expired & archived
Author Douglas Maughan
Last updated 1998-12-22
RFC stream (None)
Intended RFC status (None)
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This document presents simpler and more secure architectures for SNMPv3 agents than the ones specified in RFCs 2271-2275. Agent security is improved by restricting each module's access to data, using the 'principle of least privilege'. The new agent architectures are analyzed in terms of software complexity as well as security, and are shown in some respects to be simpler.


Douglas Maughan

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)