On 11/22/15, 15:45 , "OPSAWG on behalf of joel jaeggli" <[email protected] on behalf of [email protected]> wrote:
>On 11/22/15 11:39 AM, Joe Clarke wrote:
>> I was getting some questions from internal parties regarding the
>> implementation of SHA-2 authn for SNMPv3, and wanted to check the list
>> to gage what NMS vendors and operators might be considering with respect
>> to this. Is there a strong desire among operators to move to adopt
>> SHA-2? Are those operators already using SNMPv3 or would this provide
>> the necessary push to move to v3? Are there NMS applications already
>> adopting SHA-2? Thanks.
>
>We use SHA and AES with snmp v3. Given the general pressue other parts
>of the business to carefully track and generally improve which crypto
>suites are used we would probably move there if the hardware supported
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>it (I don't think getting it done in the NMS would really be that hard).
>To the extent that I had an auditor ask about it, it's been a while, but
>md5 and des was the topic of conversation at that time.
By “hardware” you probably mean “managed devices/managed agents”? Because
I don’t think any general-purpose hardware (besides newer Intel CPUs)
supports it.
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ OPSAWG mailing list [email protected] https://www.ietf.org/mailman/listinfo/opsawg
