Access "Snapping on SNMPv3"
This article is part of the May 2005 issue of Keeping on top of risk management and data integrity essentials
BITS & BOLTS The ubiquitous management protocol is more secure, but upgrading isn't simple. The "S" in SNMP never stood for secure; it was always meant to be "simple." Simple Network Management Protocol provides a critical functionality for facilitating network monitoring and management with products such as Hewlett-Packard's OpenView and IBM Tivoli. But it always came with a risk. The protocol's first version was inherently insecure; it lacked encryption and authentication, and was vulnerable to a number of easily exploited attacks. SNMPv2 was designed to fix many of the original security issues, but failed to close all the holes. It did add minimal authentication and some encryption, but it wasn't backwards compatible and was significantly slower than version 1. SNMPv3, on the other hand, gives security and network managers a protocol that is robust, uncomplicated and secure. However, while backwards compatible, it isn't supported by all devices out of the box. SNMPv3, of course, is not new. But, not everyone has upgraded, and many enterprises are using a ... Access >>>
Premium Content for Free.
Desktop Security: GreenBorder Enterprise Security
GreenBorder Technologies' GreenBorder Enterprise Security Solution
Snapping on SNMPv3
The ubiquitous management protocol is more secure, but upgrading isn't simple.
Hot Pick: Polivec Compliance Management System 3.7
Polivec's Polivec Compliance Management System 3.7
It doesn't come easy when you federate identity management.
SonicWALL's PRO 1260
Big Brother's Watchful Eye
Our survey finds that enterprises are spending big on management systems to meet regulatory requirements.
- Desktop Security: GreenBorder Enterprise Security
Recent Releases: Security product briefs, May 2005
Read about the information security products released in May 2005.
Keeping the Data & Oil Flowing
When ChevronTexaco puts a drill in the ground, it must live with that decision for decades. Risk management and data integrity are essential.
Secure Reads: The Art of Computer Virus Research and Defense
Read a review of The Art of Computer Virus Research and Defense.
Instant Messaging: Akonix L7 Enterprise 4.0
Akonix Systems' Akonix L7 Enterprise 4.0
Vernier Networks' EdgeWall 7000 series
- Recent Releases: Security product briefs, May 2005
Layer 8: Debating policy vs. technology
Logoff: Let's not cheapen information security certifications
Dollars & Certs
Perspectives: Windows Server 2003 security stands up
One study concludes that Windows Server 2003 is more secure than Linux.
Ping: Bruce Bonsall
MassMutual's Bruce Bonsall
Editor's Desk: Targeted malware
- Layer 8: Debating policy vs. technology
More Premium Content Accessible For Free
Deploying data protection technologies properly requires a lot of time and patience. While most firms can get started by using preconfigured policies...
The bring your own device (BYOD) movement, which has flooded the enterprise with employee-owned smartphones, tablets, phablets and purse-sized ...
For so long penetration testing meant hiring an expert to use skill and savvy to try to infiltrate the company system. But, as with most ...