blank.gif (43 bytes)

Church Of The
Swimming Elephant

Search:
6.3.4. Restricted Administration Mechanism Connected: An Internet Encyclopedia
6.3.4. Restricted Administration Mechanism

Up: Connected: An Internet Encyclopedia
Up: Requests For Comments
Up: RFC 1446
Up: 6. Security Considerations
Up: 6.3. Protocol Correctness
Prev: 6.3.3. Data Origin Authentication Mechanism
Next: 6.3.5. Message Timeliness Mechanism

6.3.4. Restricted Administration Mechanism

6.3.4. Restricted Administration Mechanism

This memo requires that implementations preclude administrative alterations of the authentication clock for a particular party independently from its private authentication key (unless that clock alteration is an advancement). An example of an efficient implementation of this restriction is provided in a pseudocode fragment below. This pseudocode fragment meets the requirements of assumption 6. Observe that the requirement is not for simultaneous alteration but to preclude independent alteration. This latter requirement is fairly easily realized in a way that is consistent with the defined semantics of the SNMPv2 set operation.

        Void partySetKey (party, newKeyValue)
        {
            if (party->clockAltered) {
               party->clockAltered = FALSE;
               party->keyAltered = FALSE;
               party->keyInUse = newKeyValue;
               party->clockInUse = party->clockCache;
            }
            else {
               party->keyAltered = TRUE;
               party->keyCache = newKeyValue;
            }
        }

        Void partySetClock (party, newClockValue)
        {
            if (party->keyAltered) {
               party->keyAltered = FALSE;
               party->clockAltered = FALSE;
               party->clockInUse = newClockValue;
               party->keyInUse = party->keyCache;
            }
            else {
               party->clockAltered = TRUE;
               party->clockCache = newClockValue;
            }
        }


Next: 6.3.5. Message Timeliness Mechanism

Connected: An Internet Encyclopedia
6.3.4. Restricted Administration Mechanism

Cotse.Net

Protect yourself from cyberstalkers, identity thieves, and those who would snoop on you.
Stop spam from invading your inbox without losing the mail you want. We give you more control over your e-mail than any other service.
Block popups, ads, and malicious scripts while you surf the net through our anonymous proxies.
Participate in Usenet, host your web files, easily send anonymous messages, and more, much more.
All private, all encrypted, all secure, all in an easy to use service, and all for only $5.95 a month!

Service Details

 
.
www.cotse.com
Have you gone to church today?
.
All pages ©1999, 2000, 2001, 2002, 2003 Church of the Swimming Elephant unless otherwise stated
Church of the Swimming Elephant©1999, 2000, 2001, 2002, 2003 Cotse.com.
Cotse.com is a wholly owned subsidiary of Packetderm, LLC.

Packetderm, LLC
210 Park Ave #308
Worcester, MA 01609