IWL's SilverCreek SNMP Test Suite now supports secure DTLS transport. Users can execute SNMPv3 tests against their agents via a secure DTLS transport.
Historically, the SNMP protocol operated over UDP. The IETF has extended the SNMP protocol to support DTLS in addition to UDP. This means SNMP agents utilizing the Transport Security Model (TSM) over DTLS/UDP can execute a set of tests with the SilverCreek SNMP Test Suite.
The SilverCreek SNMP Test Suite software running over DTLS 1.0 or 1.2 automatically identifies bugs and anomalies to help design and quality assurance engineers fix their SNMP and MIB implementations.
In addition to the User Based Security Model (USM), the SNMP Protocol can utilize the Transport Security Model (TSM). TSM is a SNMPv3 security model (RFC 5591) designed for use with secure transports like SNMP over DTLS/UDP (RFC 6353).
DTLS integrates well into existing public keying infrastructures. Using DTLS over UDP, SNMP agents and managers can operate without eavesdropping, forgery, or message tampering. The DTLS mode provides potentially superior operation in environments where connectionless UDP transport is preferred.
SilverCeek now supports SNMPv3 over Datagram Transport Layer Security (DTLS) Transport Model for SNMP (RFC6353). Customers can now connect to SNMP agents that implement SNMP over DTLS and run SilverCreek automatic SNMPv3 tests to test their SNMP over DTLS and MIB implementations.
SilverCreek Notification monitor now supports receiving notifications over DTLS. Customers can also test SNMP traps and informs sent over DTLS/UDP secure transport.
The new SilverCreek SNMP Test Suite over DTLS is based on the following RFCs:
RFC 6353 Transport Layer Security (TLS) Transport Model for the Simple Network Management Protocol (SNMP), using the Datagram Transport Layer Security (DTLS/UDP).
RFC 5343 Simple Network Management Protocol (SNMP) Context EngineID Discovery
RFC 5591 Transport Security Model for the (TSM) Simple Network Management Protocol (SNMP)
In addition to the SNMP Test Suite over DTLS, IWL offers test suites for MQTT, TCP/IP, IPv4 and IPv6, ARP, DHCP, SIP and UDP.
The BETA version of the SNMP Test Suite over DTLS is available now. To reserve your copy, contact firstname.lastname@example.org