The Integrated Security Model for SNMP (ISMS) working group was chartered with developing a security infrastructure that used native authentication mechanisms, rather than relying on a completely independent user base like USM does. The working group has produced multiple documents defining the resulting solution and architecture. In particular it has produced:
- A Transport Security Model (TSM) responsible for assuring incoming packets were tunnelled properly and outgoing packets are sent through the right tunnel. (yes, this is an oversimplification...)
- A SSH transport model that defines how SNMP messages should be sent over SSH.
- A radius document... description missing at the moment.
Also written but not yet approved as a working group document:
- A DTLS transport model that defines how SNMP messages should be sent over DTLS.