>>>>> "Juergen" == Juergen Schoenwaelder <[email protected]>
>>>>> writes:
Juergen> At least, we should not confuse 'Abstract Service
Juergen> Interfaces', 'Subsystems', 'Models' and 'extension points'
Juergen> (which is a new concept since so far Models do not have
Juergen> such plugin extension points).
Hmm, I actually do think USM has several such extension points.
There does seem to be an extension point for an authentication algorithm
in the model already.
It's been my experience that adding security algorithms without such
extension points does tend to cause problems both in interoperability
because you tend to use much less pprecision when you don't need to
define a clear extension point and in security because that lack of
precision tends to lead to security analysis problems. I've seen this
both in the routing area and with core security protocols.
I don't have enough SNMP experience to figure out whether the results
will be different here.
_______________________________________________
OPSAWG mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/opsawg
