SNMP v3 Encryption of encoded messages

I need to research whether any devices that use SNMPv3 perform 3 steps:
1. encode SNMP messages to get an encoded message
2. encrypt the encoded message from step 1 to get the encrypted message
3. encode the encrypted message from step 2.

Who is Participating?
David Johnson, CD, MVPConnect With a Mentor OwnerCommented:
DES has been considered vulnerable for a long time because the time required to crack an encryption algorithm is directly related to the length of the key used to secure the communication. AES allows you to choose a 128-bit, 192-bit or 256-bit key, making it exponentially stronger than the 56-bit key of DES.
David Johnson, CD, MVPOwnerCommented:
only if authPriv is enabled and configured (you should use AES and not DES)
cyber-33Author Commented:
Interesting. David, why use AES and not DES?

Another question I have what is the scenario, where the encrpted message (encryptedPDU) would represent the encoded message, as opposed to representing plain data (scopedPDU) ?

My concern is that the plain data is being encrypted PRIOR to it is encoded into the SNMP message format.... In other words, step 2 provided in the question is performed before step 1....

Thank you for your help.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.