1. CGA-MIBCSI, IETF-72 1 CGA-MIB draft-garcia-martinez-cgamib-00 Alberto Garcia-Martinez alberto@it.uc3m.es

2. CGA-MIB, jul08 2 Design overview  Objective: Manage CGA with the least dependencies on the protocol that use them (SEND, SHIM6…)  Two parts  Table of CGAs local to the node, which are also configured as local addresses in the node Access type: Control … and configure (= we can use network management protocols to create new CGAs)  Note that IP-MIB allows IP addresses to be created through management interfaces  Configure means to provide a pre-computed set of components, i.e. the agent does not generate the CGA  Table of CGAs belonging to remote nodes Possibly acquired by means of CGA-aware protocols (SEND, SHIM6) Access type: Only control (read-only access)

3. CGA-MIB, jul08 3 CGA representation  SMIv2 definitions for characterizing a CGA  *Modifier object: OCTET STRING (SIZE (16))  *CollisionCount object: INTEGER { 0, 1, 2}  *PublicKeyInfo : OCTET STRING (SIZE (0..1024)) DER encoded ASN.1 structure of the type SubjectPublicKeyInfo  same format as required in RFC3972 to be used by the hashes  *ExtensionFields : OCTET STRING (SIZE (0..1024)) Opaque from management point of view

4. CGA-MIB, jul08 4 CGA-MIB components: CGA local to the node  cgaLocalTable :  Columns that characterize the CGA ( cgaLocalTableModifier …)  Each entry must have a corresponding entry in IP- MIB:ipAddressTable To store information such as on which interface is configured, last change of the address configuration, etc. cgaLocalTable uses the same columns as the IP- MIB:ipAddressTable as INDEX  cgaLocalProtocolsUsingCga is a BITS construct that indicates the protocols currently using the CGA Full implementation of this object is not required for compliance  Classical MIB stuff to manage the creation of the rows ( SpinLocks, AdminStatus, OperStatus, RowStatus, StorageType )  Only VALID CGA (i.e. address resulting from RFC3972:Hash1, passing RFC3972:Hash2 checks) can move state of the cgaLocalOperStatus object to validAndEnabled(1) (and therefore be usable as addresses)

5. CGA-MIB, jul08 5 CGA-MIB components: CGA of remote nodes  cgaRemoteTable  Columns that characterize the CGA ( cgaRemoteTableModifier …)  Only VALID CGA (i.e. address resulting from RFC3972:Hash1, passing RFC3972:Hash2 checks) can appear in this table.  Includes cgaRemoteProtocolsUsingCga is a BITS construct that indicates the protocols currently using the CGA  Full implementation of this object is not required for compliance cgaRemoteOrigin – the protocol used to create the entry cgaRemoteCreated – time at which the entry was created