On Wed, Aug 27, 2014 at 01:45:43PM +0200, Johannes Merkle wrote: > Sam Hartman wrote on 26.08.2014 22:26: > > I've reviewed both draft-hartman-snmp-sha2 and > > draft-hmac-sha-2-usm-snmp. > > > > I suggest that others on the list speak up and declare their preference. >
I can't declare a clear preference since I have not time at the moment to study whether there are any real technical differences. One thing I note, however, is that draft-hartman-snmp-sha2 lacks a MIB module and thus is incomplete. In contrast, draft-hmac-sha-2-usm-snmp includes a MIB module but it surely requires some editing work to make it look nice. Note that a MIB module is needed to define the necessary object identities for the new authentication protocols. Since both documents claim to be identical to the authentication protocols proposed in [RFC3414] except the authentication algorithms used in generating digests (quoting almost literally draft-hartman-snmp-sha2), I think short and incremental text is a feature and not a bug. /js -- Juergen Schoenwaelder Jacobs University Bremen gGmbH Phone: +49 421 200 3587 Campus Ring 1, 28759 Bremen, Germany Fax: +49 421 200 3103 <http://www.jacobs-university.de/> _______________________________________________ OPSAWG mailing list [email protected] https://www.ietf.org/mailman/listinfo/opsawg
