ieee8021SecyMIB MODULE-IDENTITY
LAST-UPDATED "200610020000Z" -- 2 oct 2006
ORGANIZATION "IEEE 802.1 Working Group"
DESCRIPTION
"The MAC security entity (SecY) module for managing IEEE 802.1AE. An SecY is the entity that operates the MAC Security protocol within the system.
Each SecY transmits frames conveying secure MAC Service requests on a single Secure Channel (SC), and receives frames conveying secure service indications on separate SCs (one for each of the other SecYs participating in the Secure
Connectivity Association (CA)). A CA is a security relationship, established and maintained by key agreement protocols that comprise a fully connected subset of the service access points in stations attached to a single MACsec supported LAN. An SC is a security relationship used to provide security guarantees for frames transmitted from one member of a CA to the others. It is a unidirectional point to multipoint communication, and can be long lived, persisting through Secure Association Key (SAK) changes. Each SC is supported by a sequence of Secure Associations (SAs) thus allowing the periodic use of fresh keys without terminating the relationship. Each SA is supported by a single secret key, or a set of keys where the cryptographic operations used to protect one frame require more than one key.
Two different interfaces 'Controlled Port' and 'Uncontrolled Port', are associated with a SecY, and that for each instance of a SecY, two iftable rows (one for each
interface) run on top of an iftable row representing the 'Common Port' interface, such as a row with iftype = 'ethernetCsmacd(6)'.
For example :
-----------------------------------------------------------
| Controlled Port | Uncontrolled Port |
| Interface | Interface |
| (ifEntry = j) | (ifEntry = k) |
| (iftype = | (iftype = |
| macSecControlledIF(231)) | macSecUncontrolledIF(232))|
|---------------------------------------------------------|
| Physical Interface |
| (ifEntry = i) |
| (iftype = ethernetCsmacd(6)) |
|_________________________________________________________|
i, j, k are ifIndex to indicate an interface row in the iftable.
Figure : MACsec Interface Stack
The 'Controlled Port' is the service point to provide one instance of the secure MAC service in a SecY. The 'Uncontrolled Port' is the service point to provide one instance of the insecure MAC service in a SecY."
REVISION "200610020000Z" -- 2 Oct 2006
DESCRIPTION
"Fixed a SYNTAX error in the SEQUENCE of SecyCipherSuiteEntry, the syntax for secyCipherSuiteProtectionOffset is Integer32 instead of INTEGER.
This error was uncovered after publication of 802.1AE."
REVISION "200601100000Z"
DESCRIPTION
"Initial version of this MIB module. Published as part of IEEE standard 802.1AE"
View at oid-info.com
Conectivity Fault Management module for managing IEEE 802.1ag
Parsed from file IEEE802171-CFM-MIB.mib.txt
Company: None
Module: IEEE802171-CFM-MIB
The MAC security entity (SecY) module for managing IEEE
802.1AE. An SecY is the entity that operates the MAC Security
protocol within the system.
Each SecY transmits frames conveying secure MAC Service
requests on a single Secure Channel (SC), and receives frames
conveying secure service indications on separate SCs (one for
each of the other SecYs participating in the Secure
Connectivity Association (CA)). A CA is a security
relationship, established and maintained by key agreement
protocols that comprise a fully connected subset of the
service access points in stations attached to a single MACsec
supported LAN. An SC is a security relationship used to
provide security guarantees for frames transmitted from one
member of a CA to the others. It is a unidirectional point to
multipoint communication, and can be long lived, persisting
through Secure Association Key (SAK) changes. Each SC is
supported by a sequence of Secure Associations (SAs) thus
allowing the periodic use of fresh keys without terminating
the relationship. Each SA is supported by a single secret
key, or a set of keys where the cryptographic operations used
to protect one frame require more than one key.
Two different interfaces Controlled Port and
Uncontrolled Port, are associated with a SecY, and that for
each instance of a SecY, two ifTable rows (one for each
interface) run on top of an ifTable row representing the
Common Port interface, such as a row with ifType =
ethernetCsmacd(6).
For example :
| | |
| Controlled Port | Uncontrolled Port |
| Interface | Interface |
| (ifEntry = j) | (ifEntry = k) |
| (ifType = | (ifType = |
| macSecControlledIF(231)) | macSecUncontrolledIF(232))|
| | |
|
| |
| Physical Interface |
| (ifEntry = i) |
| (ifType = ethernetCsmacd(6)) |
|_________________________________________________________|
i, j, k are ifIndex to indicate an interface row in the ifTable.
Figure : MACsec Interface Stack
The Controlled Port is the service point to provide one
instance of the secure MAC service in a SecY. The
Uncontrolled Port is the service point to provide one instance
of the insecure MAC service in a SecY.
The MAC security entity (SecY) module for managing IEEE
802.1AE. An SecY is the entity that operates the MAC Security
protocol within the system.
Each SecY transmits frames conveying secure MAC Service
requests on a single Secure Channel (SC), and receives frames
conveying secure service indications on separate SCs (one for
each of the other SecYs participating in the Secure
Connectivity Association (CA)). A CA is a security
relationship, established and maintained by key agreement
protocols that comprise a fully connected subset of the
service access points in stations attached to a single MACsec
supported LAN. An SC is a security relationship used to
provide security guarantees for frames transmitted from one
member of a CA to the others. It is a unidirectional point to
multipoint communication, and can be long lived, persisting
through Secure Association Key (SAK) changes. Each SC is
supported by a sequence of Secure Associations (SAs) thus
allowing the periodic use of fresh keys without terminating
the relationship. Each SA is supported by a single secret
key, or a set of keys where the cryptographic operations used
to protect one frame require more than one key.
Two different interfaces 'Controlled Port' and
'Uncontrolled Port', are associated with a SecY, and that for
each instance of a SecY, two ifTable rows (one for each
interface) run on top of an ifTable row representing the
'Common Port' interface, such as a row with ifType =
'ethernetCsmacd(6)'.
For example :
| | |
| Controlled Port | Uncontrolled Port |
| Interface | Interface |
| (ifEntry = j) | (ifEntry = k) |
| (ifType = | (ifType = |
| macSecControlledIF(231)) | macSecUncontrolledIF(232))|
| | |
|
| |
| Physical Interface |
| (ifEntry = i) |
| (ifType = ethernetCsmacd(6)) |
|_________________________________________________________|
i, j, k are ifIndex to indicate an interface row in the ifTable.
Figure : MACsec Interface Stack
The 'Controlled Port' is the service point to provide one
instance of the secure MAC service in a SecY. The
'Uncontrolled Port' is the service point to provide one instance
of the insecure MAC service in a SecY.
ieee8021SecyMIB OBJECT IDENTIFIER ::= { iso(1) std(0) iso8802(8802) ieee802dot1(1) ieee802dot1mibs(1) 3 }
Automatically extracted from IEEE Management Information Bases (MIBs).
ieee8021cfmMIB MODULE-IDENTITY LAST-UPDATED "200611040000Z" ORGANIZATION "IEEE 802.1 Working Group" CONTACT-INFO "WG-URL: http://grouper.ieee.org/groups/802/1/index.html WG-EMail: [email protected] Contact: David Elie-Dit-Cosaque Alcatel North America 3400 W. Plano Pkwy. Plano, TX 75075, USA E-mail: [email protected] " DESCRIPTION "Conectivity Fault Management module for managing IEEE 802.1ag" REVISION "200611040000Z" DESCRIPTION "Included in IEEE P802.1ag Draft 7." ::= { iso std(0) iso8802(8802) ieee802dot1(1) ieee802dot1mibs(1) 3 }
ieee8021SecyMIB MODULE-IDENTITY LAST-UPDATED "200610020000Z" ORGANIZATION "IEEE 802.1 Working Group" CONTACT-INFO "http:/grouper.ieee.org/groups/8021/index.html" DESCRIPTION "The MAC security entity (SecY) module for managing IEEE 802.1AE. An SecY is the entity that operates the MAC Security protocol within the system. Each SecY transmits frames conveying secure MAC Service requests on a single Secure Channel (SC), and receives frames conveying secure service indications on separate SCs (one for each of the other SecYs participating in the Secure Connectivity Association (CA)). A CA is a security relationship, established and maintained by key agreement protocols that comprise a fully connected subset of the service access points in stations attached to a single MACsec supported LAN. An SC is a security relationship used to provide security guarantees for frames transmitted from one member of a CA to the others. It is a unidirectional point to multipoint communication, and can be long lived, persisting through Secure Association Key (SAK) changes. Each SC is supported by a sequence of Secure Associations (SAs) thus allowing the periodic use of fresh keys without terminating the relationship. Each SA is supported by a single secret key, or a set of keys where the cryptographic operations used to protect one frame require more than one key. Two different interfaces Controlled Port and Uncontrolled Port, are associated with a SecY, and that for each instance of a SecY, two ifTable rows (one for each interface) run on top of an ifTable row representing the Common Port interface, such as a row with ifType = ethernetCsmacd(6). For example : | | | | Controlled Port | Uncontrolled Port | | Interface | Interface | | (ifEntry = j) | (ifEntry = k) | | (ifType = | (ifType = | | macSecControlledIF(231)) | macSecUncontrolledIF(232))| | | | | | | | Physical Interface | | (ifEntry = i) | | (ifType = ethernetCsmacd(6)) | |_________________________________________________________| i, j, k are ifIndex to indicate an interface row in the ifTable. Figure : MACsec Interface Stack The Controlled Port is the service point to provide one instance of the secure MAC service in a SecY. The Uncontrolled Port is the service point to provide one instance of the insecure MAC service in a SecY." REVISION "200610020000Z" DESCRIPTION "Fixed a SYNTAX error in the SEQUENCE of SecyCipherSuiteEntry, the syntax for secyCipherSuiteProtectionOffset is Integer32 instead of INTEGER. This error was uncovered after publication of 802.1AE." REVISION "200601100000Z" DESCRIPTION "Initial version of this MIB module. Published as part of IEEE standard 802.1AE" ::= { iso(1) std(0) iso8802(8802) ieee802dot1(1) ieee802dot1mibs(1) 3 }
ieee8021SecyMIB MODULE-IDENTITY LAST-UPDATED "200610020000Z" ORGANIZATION "IEEE 802.1 Working Group" CONTACT-INFO "http:/grouper.ieee.org/groups/8021/index.html" DESCRIPTION "The MAC security entity (SecY) module for managing IEEE 802.1AE. An SecY is the entity that operates the MAC Security protocol within the system. Each SecY transmits frames conveying secure MAC Service requests on a single Secure Channel (SC), and receives frames conveying secure service indications on separate SCs (one for each of the other SecYs participating in the Secure Connectivity Association (CA)). A CA is a security relationship, established and maintained by key agreement protocols that comprise a fully connected subset of the service access points in stations attached to a single MACsec supported LAN. An SC is a security relationship used to provide security guarantees for frames transmitted from one member of a CA to the others. It is a unidirectional point to multipoint communication, and can be long lived, persisting through Secure Association Key (SAK) changes. Each SC is supported by a sequence of Secure Associations (SAs) thus allowing the periodic use of fresh keys without terminating the relationship. Each SA is supported by a single secret key, or a set of keys where the cryptographic operations used to protect one frame require more than one key. Two different interfaces 'Controlled Port' and 'Uncontrolled Port', are associated with a SecY, and that for each instance of a SecY, two ifTable rows (one for each interface) run on top of an ifTable row representing the 'Common Port' interface, such as a row with ifType = 'ethernetCsmacd(6)'. For example : | | | | Controlled Port | Uncontrolled Port | | Interface | Interface | | (ifEntry = j) | (ifEntry = k) | | (ifType = | (ifType = | | macSecControlledIF(231)) | macSecUncontrolledIF(232))| | | | | | | | Physical Interface | | (ifEntry = i) | | (ifType = ethernetCsmacd(6)) | |_________________________________________________________| i, j, k are ifIndex to indicate an interface row in the ifTable. Figure : MACsec Interface Stack The 'Controlled Port' is the service point to provide one instance of the secure MAC service in a SecY. The 'Uncontrolled Port' is the service point to provide one instance of the insecure MAC service in a SecY." REVISION "200610020000Z" DESCRIPTION "Fixed a SYNTAX error in the SEQUENCE of SecyCipherSuiteEntry, the syntax for secyCipherSuiteProtectionOffset is Integer32 instead of INTEGER. This error was uncovered after publication of 802.1AE." REVISION "200601100000Z" DESCRIPTION "Initial version of this MIB module. Published as part of IEEE standard 802.1AE" ::= { iso(1) std(0) iso8802(8802) ieee802dot1(1) ieee802dot1mibs(1) 3 }
OID | Name | Sub children | Sub Nodes Total | Description |
---|---|---|---|---|
1.0.8802.1.1.3.0 | secyMIBNotifications, dot1agNotifications | 1 | 1 | None |
1.0.8802.1.1.3.1 | secyMIBObjects, dot1agMIBObjects | 6 | 235 | None |
1.0.8802.1.1.3.2 | secyMIBConformance, dot1agCfmConformance | 2 | 14 | None |
OID | Name | Sub children | Sub Nodes Total | Description |
---|---|---|---|---|
1.0.8802.1.1.1 | ieee8021paeMIB | 2 | 113 | The Port Access Entity module for managing IEEE 802.1X. |
1.0.8802.1.1.2 | ieee8021lldp, lldpMIB | 3 | 340 | Management Information Base module for LLDP configuration, statistics, local system data and remote systems data components. Copyr… |