Transport Layer Security Transport Model for the Simple Network Management Protocol
RFC 6353, “Transport Layer Security Transport Model for the Simple Network Management Protocol”, is an Internet Standard document published in July 2011 by W. Hardaker. It obsoletes RFC 5953. It has since been updated by RFC 8996, RFC 9456. The canonical text is published by the RFC Editor.
Abstract
This document describes a Transport Model for the Simple Network Management Protocol (SNMP), that uses either the Transport Layer Security protocol or the Datagram Transport Layer Security (DTLS) protocol. The TLS and DTLS protocols provide authentication and privacy services for SNMP applications. This document describes how the TLS Transport Model (TLSTM) implements the needed features of an SNMP Transport Subsystem to make this protection possible in an interoperable way.
This Transport Model is designed to meet the security and operational needs of network administrators. It supports the sending of SNMP messages over TLS/TCP and DTLS/UDP. The TLS mode can make use of TCP's improved support for larger packet sizes and the DTLS mode provides potentially superior operation in environments where a connectionless (e.g., UDP) transport is preferred. Both TLS and DTLS integrate well into existing public keying infrastructures.
This document also defines a portion of the Management Information Base (MIB) for use with network management protocols. In particular, it defines objects for managing the TLS Transport Model for SNMP. [STANDARDS-TRACK]
What “Internet Standard” means
A mature, widely-implemented specification that has completed the full IETF standards process — the highest maturity level on the standards track.
The canonical text of RFC 6353 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 6352 CardDAV: vCard Extensions to Web Distributed Authoring and Versioning
- RFC 6354 Forward-Shifted RTP Redundancy Payload Support
- RFC 6351 xCard: vCard XML Representation
- RFC 6355 Definition of the UUID-Based DHCPv6 Unique Identifier
- RFC 6350 vCard Format Specification
- RFC 6356 Coupled Congestion Control for Multipath Transport Protocols
- RFC 6349 Framework for TCP Throughput Testing
- RFC 6357 Design Considerations for Session Initiation Protocol Overload Control