Security Notice

This page shows you information about security notices.

Overview

Recent changes in security related areas make many SNMP building blocks deprecated. For example, MD5 and SHA-1 have been widely considered obsolete due to possible collisions. DES/3DES are in a similar case.

So to configure your SNMP agents and remedy security risks, it is recommended to choose authentication/privacy providers that use more modern algorithms, such as SHA-2 and AES.

Built-in Providers

#SNMP Library built-in providers are,

Authentication Providers
MD5AuthenticationProvider	Obsolete
SHA1AuthenticationProvider	Obsolete
SHA256AuthenticationProvider
SHA384AuthenticationProvider
SHA512AuthenticationProvider

Privacy Providers
DESPrivacyProvider	Obsolete
TripleDESPrivacyProvider	Obsolete
AESPrivacyProvider
AES192PrivacyProvider
AES256PrivacyProvider

FIPS Compliance

Since the provider implementations are based on .NET cryptography libraries, the actual FIPS compliance depends on the .NET platform. You can read the .NET documentation for more information.

You can also implement your own FIPS-compliant providers by implementing the IAuthenticationProvider and IPrivacyProvider interfaces.

Related Resources

• Information on DES/AES Privacy Providers

• SNMP v3 Operations

• The API Reference