User's Manual 14. Remote Device Management
Version 4.4.3 227 MP-20x Multimedia Home Gateway
14.4.2.3 Security Concerns and Measures
The CPE WAN Management Protocol is designed to allow a high degree of security in the
interactions that use it. The CPE WAN Management Protocol is designed to prevent
tampering with the transactions that take place between a CPE and ACS, provide
confidentiality for these transactions, and allow various levels of authentication.
The following security mechanisms are incorporated in this protocol:
The protocol supports the use of SSL/TLS for communications transport between CPE
and ACS. This provides transaction confidentiality, data integrity, and allows
certificate-based authentication between the CPE and ACS.
The HTTP layer provides an alternative means of CPE authentication based on
shared secrets.
14.4.3 SNMP
Simple Network Management Protocol (SNMP) is used in network management systems to
configure and monitor network-attached devices. SNMP is an IETF standard defined by
RFC 1157, 1441 and additional RFCs for specific Management Information Base (MIBs).
The device contains an embedded SNMP agent and supports SNMPv1, SNMPv2 and
partially supports SNMPv3. For monitoring of the network interfaces, the standard SNMP
MIB-II (RFC 1213) is supported. For more options, a proprietary MIB, AC-MP20X-MIB
includes the following sections:
acMP20xConfig: for changing the device's configuration
acMP20xStatus: for monitoring the device's status
The figure below shows the SNMP network architecture:
Figure 14-12: SNMP Network Architecture
To Next Page
Loading...
Need help?
General
