The Research Of Some Technologies In Secure Network Management Based On SNMPv3

As TCP/IP-based networks begin to reach everywhere in the society, the challenge of managing them becomes very important and demanding. In particular, the complexity in heterogeneous network environment brings network management many fresh problems, among which the most important is security. How to carry out operative and secure network management is a deep concern problem of enterprise network construction. Among the network management architectures, SNMP plays a significant role and its version has been developed from vl to v3.The thesis focuses on researching the secure policies of SNMPv3-based network management according to modern management needs, and proposes an implementation method of a secure network management system (SNMS) based on SNMPvS.In the first place, the paper introduces some knowledge about SNMP, include SMI (Structure of Management Information), MIB (Management Information Base) and protocol operations. Secondly, the architecture of SNMPvS is elaborated, the module function and new message format is also described. After that, the security in SNMPvS is discussed including privacy &authentication mechanism and time-window detection. The emphasis is put on USM (User-based Security Model) and VACM (View-based Access Control Model).Furthermore, the paper discusses the implementation of the SNMS, including SNMP protocol-stack, user-manage application andtopology-discovery module. The protocol-stack is developed using COM, which is high-performance and economical. In the user-manage application , the architecture of SNMPvS is extended, and a new privacy key scheme is employed, which make the application more secure. A layering way of topology discovery is introduced in topology-discovery module. The algorithm that uses Routing-Table method and APvP-based method is effective & applicable, and is easily replaced because of the flexible structure.Design Pattern is the experience in OOP, and elucidates a scene and a solution for it. In the design of SNMS, many design patterns are used, whichprovide flexible, elegant and reusable solutions.At last according to network management tendency, problems and possible solution when adapting new technology are discussed. All this could be a good reference for further development.