DOCS-BPI2EXT-MIB
File:
DOCS-BPI2EXT-MIB.mib (13254 bytes)
Imported modules
Imported symbols
Defined Types
DocsCvcCaCertificateChain |
|
A degenerate PKCS7 signedData structure that contains the CVC and the
CVC CA certificate chain in the certificates field. |
TEXTUAL-CONVENTION |
|
|
|
|
OCTET STRING |
Size(0..8192) |
|
Defined Values
docsBpi2Ext31Mib |
1.3.6.1.4.1.4491.2.1.29 |
This MIB module adds to the BPI management objects that are
defined in the DOCS-IETF-BPI2-MIB (RFC 4131). These objects
are in addition to and the DOCS-IETF-BPI2-MIB (RFC 4131).
These objects are in addition to and separate from RFC 4131
and provide management support for new DOCSIS 3.1 features.
The following MIBs from RFC 4131 are used to support legacy PKI
CM certificate functions defined in the DOCSIS 3.0 security
specification:
docsBpi2CmDeviceCertTable,
docsBpi2CodeMfgOrgName,
docsBpi2CodeMfgCodeAccessStart,
docsBpi2CodeMfgCvcAccessStart,
docsBpi2CodeCoSignerOrgName,
docsBpi2CodeCoSignerCodeAccessStart,
docsBpi2CodeCoSignerCvcAccessStart,
docsBpi2CodeCvcUpdate.
The following MIBs defined in this MIB module are used to
support new PKI CM certificate functions defined in the
DOCSIS 3.1 security specification:
docsBpi2Ext31CmDeviceCmCert,
docsBpi2Ext31CodeUpdateCvcChain,
docsBpi2Ext31CodeMfgOrgName,
docsBpi2Ext31CodeMfgCodeAccessStart,
docsBpi2Ext31CodeMfgCvcAccessStart,
docsBpi2Ext31CodeCoSignerOrgName,
docsBpi2Ext31CodeCoSignerCodeAccessStart,
docsBpi2Ext31CodeCoSignerCvcAccessStart.
Copyright 2015-2017 Cable Television Laboratories, Inc.
All rights reserved. |
MODULE-IDENTITY |
|
|
|
docsBpi2Ext31CmDeviceCertEntry |
1.3.6.1.4.1.4491.2.1.29.1.1.1.1.1 |
Each entry contains the device certificates of
one CM MAC interface. An entry in this table exists for
each ifEntry with an ifType of docsCableMaclayer(127). |
Status: current |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
DocsBpi2Ext31CmDeviceCertEntry |
|
|
docsBpi2Ext31CmDeviceCmCert |
1.3.6.1.4.1.4491.2.1.29.1.1.1.1.1.1 |
The X509 DER-encoded cable modem certificate.
Note: This object can be set only when the value is the
zero-length OCTET STRING; otherwise, an error of
'inconsistentValue' is returned. Once the object
contains the certificate, its access MUST be read-only
and persists after re-initialization of the
managed system. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
DocsX509ASN1DEREncodedCertificate |
|
|
docsBpi2Ext31CodeUpdateCvcChain |
1.3.6.1.4.1.4491.2.1.29.1.2.1 |
The value of this object is a degenerate PKCS7 signedData
structure that contains the CVC and the CVC CA
certificate chain in the certificates field. Setting
this object triggers the device to verify the CVC and
update the cvcAccessStart values associated with the new PKI defined by
DOCSIS 3.1. The content of this object is then discarded. If the device
is not enabled to upgrade codefiles, or if the CVC verification fails,
the CVC will be rejected. Reading this object always
returns the zero-length OCTET STRING. |
Status: current |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
DocsCvcCaCertificateChain |
|
|
docsBpi2Ext31CodeMfgOrgName |
1.3.6.1.4.1.4491.2.1.29.1.2.2 |
The value of this object is the device manufacturer's
organizationName used to validate the code verification certificate
issued from the new PKI defined in DOCSIS 3.1. |
Status: current |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
SnmpAdminString |
|
|
docsBpi2Ext31CodeMfgCodeAccessStart |
1.3.6.1.4.1.4491.2.1.29.1.2.3 |
The value of this object is the device manufacturer's
current codeAccessStart value used with the new PKI defined in
DOCSIS 3.1. This value will always refer to Greenwich Mean Time (GMT),
and the value format must contain TimeZone information (fields 8-10). |
Status: current |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
DateAndTime |
Size(11) |
|
docsBpi2Ext31CodeMfgCvcAccessStart |
1.3.6.1.4.1.4491.2.1.29.1.2.4 |
The value of this object is the device manufacturer's
current cvcAccessStart value used with the new PKI defined in
DOCSIS 3.1. This value will always refer to Greenwich Mean Time (GMT),
and the value format must contain TimeZone information (fields 8-10). |
Status: current |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
DateAndTime |
Size(11) |
|
docsBpi2Ext31CodeCoSignerOrgName |
1.3.6.1.4.1.4491.2.1.29.1.2.5 |
The value of this object is the co-signer's
organizationName used to validate the code verification certificate
issued from the new PKI defined in DOCSIS 3.1. The value is a zero
length string if the co-signer is not specified. |
Status: current |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
SnmpAdminString |
|
|
docsBpi2Ext31CodeCoSignerCodeAccessStart |
1.3.6.1.4.1.4491.2.1.29.1.2.6 |
The value of this object is the co-signer's current
codeAccessStart value used with the new PKI defined in DOCSIS 3.1.
This value will always refer to Greenwich Mean Time (GMT), and the
value format must contain TimeZone information (fields 8-10).
If docsBpi2CodeCoSignerOrgName is a zero
length string, the value of this object is meaningless. |
Status: current |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
DateAndTime |
Size(11) |
|
docsBpi2Ext31CodeCoSignerCvcAccessStart |
1.3.6.1.4.1.4491.2.1.29.1.2.7 |
The value of this object is the co-signer's current
cvcAccessStart value used with the new PKI defined in DOCSIS 3.1.
This value will always refer to Greenwich Mean Time (GMT), and the
value format must contain TimeZone information (fields 8-10).
If docsBpi2CodeCoSignerOrgName is a zero-length string, the value of
this object is meaningless. |
Status: current |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
DateAndTime |
Size(11) |
|
docsBpi2Ext31MIBCompliance |
1.3.6.1.4.1.4491.2.1.29.2.1.1 |
The compliance statement for implementations of the DOC-BPI2EXT-MIB. |
Status: current |
Access: read-only |
MODULE-COMPLIANCE |
|
|
|
docsBpi2Ext31CmGroup |
1.3.6.1.4.1.4491.2.1.29.2.2.1 |
The group of objects implemented by the CM. |
Status: current |
Access: read-only |
OBJECT-GROUP |
|
|
|
docsBpi2Ext31BaseGroup |
1.3.6.1.4.1.4491.2.1.29.2.2.2 |
The group of objects implemented by the CM and open to
implementation by other devices. |
Status: current |
Access: read-only |
OBJECT-GROUP |
|
|
|