Hi, I am developing an embedded product where we are using Net-SNMP as monitoring interface. Currently using SNMPv3/USM but due to the MiTM security issue[1] outline by Wes Hardaker, we want to move to SNMPv3/DTLS. So I am exploring the possibility of using DTLS with Pre-Shared Keys (PSK), since we already have keys deployed in all existing products. As far as I can see Net-SNMP does not currently support DTLS-PSK, but OpenSSL support DTLS 1.0 PSK.
What is the status of DTLS with PSK? [1] http://pontifications.hardakers.net/computers/limitations-of-snmpv3usm-when-combined-with-engineid-discovery/ Venlig hilsen / Best regards Kamstrup A/S <http://kamstrup.com> Bruno Thomsen Development engineer Technology Kamstrup A/S Industrivej 28 DK-8660 Skanderborg T: +45 89 93 10 00 D: +45 89 93 13 94 b...@kamstrup.com kamstrup.com ------------------------------------------------------------------------------ Dive into the World of Parallel Programming. The Go Parallel Website, sponsored by Intel and developed in partnership with Slashdot Media, is your hub for all things parallel software development, from weekly thought leadership blogs to news, videos, case studies, tutorials and more. Take a look and join the conversation now. http://goparallel.sourceforge.net/ _______________________________________________ Net-snmp-coders mailing list Net-snmp-coders@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/net-snmp-coders
