Daniel Goertzen
unread,Feb 24, 2014, 9:33:08 PM2/24/14You do not have permission to delete messages in this group
Sign in to report message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to
Hello, I am struggling to get SNMP Informs running from my Erlang agent to net-snmp snmptrapd. DES privacy works fine, but AES does not.
I am looking at RFC 3826 and am trying to understand how the IV is put together in the context of informs. I have some questions:
1. It says the IV is from the 32 bit authoritative engine boots, 32 bit engine time, and a 64 bit local integer. For informs the authoritative engine is the where the inform is being sent, so should those engine parameters be used here?
2. Since the engine time is used in the IV, wouldn't the sender have to know the engine time of the target's engine almost exactly to avoid mismatch? If the time drifts, wouldn't the IV become incorrect and produce a garbage decrypt? Do receiving engines try multiple decrypts at various drifts to account for this?
Thanks,
Dan.