IEEE8021-SECY-MIB: View SNMP OID List / Download MIB

VENDOR: INTERNET-STANDARD


 Home MIB: IEEE8021-SECY-MIB
Download as:   

Download standard MIB format if you are planning to load a MIB file into some system (OS, Zabbix, PRTG ...) or view it with a MIB browser. CSV is more suitable for analyzing and viewing OID' and other MIB objects in excel. JSON and YAML formats are usually used in programing even though some systems can use MIB in YAML format (like Logstash).
Keep in mind that standard MIB files can be successfully loaded by systems and programs only if all the required MIB's from the "Imports" section are already loaded.
The tree-like SNMP object navigator requires no explanations because it is very simple to use. And if you stumbled on this MIB from Google note that you can always go back to the home page if you need to perform another MIB or OID lookup.


Object Name OID Type Access Info
 ieee8021SecyMIB 1.0.8802.1.1.3
The MAC security entity (SecY) module for managing IEEE 802.1AE. An SecY is the entity that operates the MAC Security protocol within the system. Each SecY transmits frames conveying secure MAC Service requests on a single Secure Channel (SC), and receives frames conveying secure service indications on separate SCs (one for each of the other SecYs participating in the Secure Connectivity Association (CA)). A CA is a security relationship, established and maintained by key agreement protocols that comprise a fully connected subset of the service access points in stations attached to a single MACsec supported LAN. An SC is a security relationship used to provide security guarantees for frames transmitted from one member of a CA to the others. It is a unidirectional point to multipoint communication, and can be long lived, persisting through Secure Association Key (SAK) changes. Each SC is supported by a sequence of Secure Associations (SAs) thus allowing the periodic use of fresh keys without terminating the relationship. Each SA is supported by a single secret key, or a set of keys where the cryptographic operations used to protect one frame require more than one key. Two different interfaces 'Controlled Port' and 'Uncontrolled Port', are associated with a SecY, and that for each instance of a SecY, two ifTable rows (one for each interface) run on top of an ifTable row representing the 'Common Port' interface, such as a row with ifType = 'ethernetCsmacd(6)'. For example : ----------------------------------------------------------- | | | | Controlled Port | Uncontrolled Port | | Interface | Interface | | (ifEntry = j) | (ifEntry = k) | | (ifType = | (ifType = | | macSecControlledIF(231)) | macSecUncontrolledIF(232))| | | | |---------------------------------------------------------| | | | Physical Interface | | (ifEntry = i) | | (ifType = ethernetCsmacd(6)) | |_________________________________________________________| i, j, k are ifIndex to indicate an interface row in the ifTable. Figure : MACsec Interface Stack The 'Controlled Port' is the service point to provide one instance of the secure MAC service in a SecY. The 'Uncontrolled Port' is the service point to provide one instance of the insecure MAC service in a SecY.
     secyMIBNotifications 1.0.8802.1.1.3.0
     secyMIBObjects 1.0.8802.1.1.3.1
         secyMgmtMIBObjects 1.0.8802.1.1.3.1.1
             secyIfTable 1.0.8802.1.1.3.1.1.1 no-access
A table of system level information for each interface supported by the MAC security entity. An entry appears in this table for each interface with MAC security capability in this system. For the writeable objects in this table, the configured value shall be stored in persistent memory and remain unchanged across a re-initialization of the management system of the entity.
                 secyIfEntry 1.0.8802.1.1.3.1.1.1.1 no-access
An entry containing SecY management information applicable to a particular interface.
                     secyIfInterfaceIndex 1.0.8802.1.1.3.1.1.1.1.1 interfaceindex no-access
An interface index for a port with SecY management ability. This interface index should be aligned with ifIndex in the ifTable to point to the SecY Controlled Port entity.
                     secyIfMaxPeerSCs 1.0.8802.1.1.3.1.1.1.1.2 unsigned32 read-only
Maximum number of peer SCs that this SecY can support.
                     secyIfRxMaxKeys 1.0.8802.1.1.3.1.1.1.1.3 unsigned32 read-only
Maximum number of keys in simultaneous use for reception that this SecY can support.
                     secyIfTxMaxKeys 1.0.8802.1.1.3.1.1.1.1.4 unsigned32 read-only
Maximum number of keys in simultaneous use for transmission that this SecY can support.
                     secyIfProtectFramesEnable 1.0.8802.1.1.3.1.1.1.1.5 truthvalue read-write
An object to enable or disable the protection function for egress frames.
                     secyIfValidateFrames 1.0.8802.1.1.3.1.1.1.1.6 integer read-write
An object to control the validation function for ingress frames. disabled(1) : means to disable the validation function. check(2) : means to enable the validation function but only for checking without filtering out invalid frames. strict(3) : means to enable the validation function and also strictly filter out those invalid frames. Enumeration: 'disabled': 1, 'strict': 3, 'check': 2.
                     secyIfReplayProtectEnable 1.0.8802.1.1.3.1.1.1.1.7 truthvalue read-write
An object to enable or disable the replay protection function.
                     secyIfReplayProtectWindow 1.0.8802.1.1.3.1.1.1.1.8 unsigned32 read-write
An object to indicate the replay protection window size. This object only takes effect if the object secyReplayProtectEnable is true.
                     secyIfCurrentCipherSuite 1.0.8802.1.1.3.1.1.1.1.9 unsigned32 read-write
An object that points to an entry of the secyCipherSuiteTable with 'active' row status to indicate the cipher Suite which this SecY is currently using. By default, this object should point to the default cipher suite which system provides.
                     secyIfAdminPt2PtMAC 1.0.8802.1.1.3.1.1.1.1.10 integer read-write
An object to control the service connectivity to at most one other system. The secyOperPt2PtMAC indicates operational status of the service connectivity for this SecY. forceTrue(1) : allows only one service connection to the other system. forceFalse(2) : no restriction on the number of service connections to the other systems. auto(3) : means the service connectivity is determined by the service providing entity. Enumeration: 'forceFalse': 2, 'forceTrue': 1, 'auto': 3.
                     secyIfOperPt2PtMAC 1.0.8802.1.1.3.1.1.1.1.11 truthvalue read-only
An object to reflect the current service connectivity status. true(1) : means the service connectivity of this SecY provides at most one other system. false(2) : means the service connectivity of this SecY could provide more than one other system.
                     secyIfIncludeSCIEnable 1.0.8802.1.1.3.1.1.1.1.12 truthvalue read-write
An object indicates to include the SCI information in security TAG (SecTAG) field while transmitting MACsec frames.
                     secyIfUseESEnable 1.0.8802.1.1.3.1.1.1.1.13 truthvalue read-write
An object indicates to enable the ES bit in security TAG (SecTAG) field while transmitting MACsec frames.
                     secyIfUseSCBEnable 1.0.8802.1.1.3.1.1.1.1.14 truthvalue read-write
An object indicates to enable the SCB bit in security TAG (SecTAG) field while transmitting MACsec frames.
             secyTxSCTable 1.0.8802.1.1.3.1.1.2 no-access
A table for providing information about the status of each transmitting SC supported by the MAC security entity.
                 secyTxSCEntry 1.0.8802.1.1.3.1.1.2.1 no-access
An entry containing transmitting SC management information applicable to a particular SecY.
                     secyTxSCI 1.0.8802.1.1.3.1.1.2.1.1 secysci read-only
The SCI information for transmitting MACsec frames of the transmitting SC in the SecY.
                     secyTxSCState 1.0.8802.1.1.3.1.1.2.1.2 integer read-only
The state of the current transmitting SC in the SecY. inUse(1) : means any of SAs for this SC is in use. notInUse(2) : means no SAs for this SC is in use. Enumeration: 'notInUse': 2, 'inUse': 1.
                     secyTxSCEncodingSA 1.0.8802.1.1.3.1.1.2.1.3 rowpointer read-only
The current transmitting SA in use. The row pointer will point to an entry in the secyTxSATable. If no such information is available, the value shall be the OBJECT IDENTIFIER { 0 0 }.
                     secyTxSCEncipheringSA 1.0.8802.1.1.3.1.1.2.1.4 rowpointer read-only
The previous transmitting SA in use. The row pointer will point to an entry in the secyTxSATable. If no such information is available, the value shall be the OBJECT IDENTIFIER { 0 0 }.
                     secyTxSCCreatedTime 1.0.8802.1.1.3.1.1.2.1.5 timestamp read-only
The system time when this transmitting SC was created.
                     secyTxSCStartedTime 1.0.8802.1.1.3.1.1.2.1.6 timestamp read-only
The system time when this transmitting SC last started transmitting MACsec frames.
                     secyTxSCStoppedTime 1.0.8802.1.1.3.1.1.2.1.7 timestamp read-only
The system time when this transmitting SC last stopped transmitting MACsec frames.
             secyTxSATable 1.0.8802.1.1.3.1.1.3 no-access
A table for providing information about the status of each transmitting SA supported by the MAC security entity.
                 secyTxSAEntry 1.0.8802.1.1.3.1.1.3.1 no-access
An entry containing transmitting SA management information applicable to a particular SA.
                     secyTxSA 1.0.8802.1.1.3.1.1.3.1.1 secyan no-access
The association number (AN) for identifying a transmitting SA.
                     secyTxSAState 1.0.8802.1.1.3.1.1.3.1.2 integer read-only
The current status of the transmitting SA. inUse(1) : means this SA is in use. notInUse(2) : means this SA is not in use. Enumeration: 'notInUse': 2, 'inUse': 1.
                     secyTxSANextPN 1.0.8802.1.1.3.1.1.3.1.3 unsigned32 read-only
The next packet number (PN) that will be used in transmitting MACsec frames in the SA.
                     secyTxSAConfidentiality 1.0.8802.1.1.3.1.1.3.1.4 truthvalue read-only
Whether this SA supports the confidentiality as well as integrity function in transmitting frames.
                     secyTxSASAKUnchanged 1.0.8802.1.1.3.1.1.3.1.5 truthvalue read-only
A reference to an SAK that is unchanged for the life of the transmitting SA.
                     secyTxSACreatedTime 1.0.8802.1.1.3.1.1.3.1.6 timestamp read-only
The system time when this transmitting SA was created.
                     secyTxSAStartedTime 1.0.8802.1.1.3.1.1.3.1.7 timestamp read-only
The system time when this transmitting SA last started transmitting MACsec frames.
                     secyTxSAStoppedTime 1.0.8802.1.1.3.1.1.3.1.8 timestamp read-only
The system time when this transmitting SA last stopped transmitting MACsec frames.
             secyRxSCTable 1.0.8802.1.1.3.1.1.4 no-access
A table for providing information about the status of each receiving SC supported by the MAC security entity.
                 secyRxSCEntry 1.0.8802.1.1.3.1.1.4.1 no-access
An entry containing receiving SC management information applicable to a particular SC.
                     secyRxSCI 1.0.8802.1.1.3.1.1.4.1.1 secysci no-access
The SCI for identifying the receiving SC in the SecY.
                     secyRxSCState 1.0.8802.1.1.3.1.1.4.1.2 integer read-only
The state of the receiving SC in the SecY. inUse(1) : means any of SAs for this SC is in use. notInUse(2) : means no SAs for this SC is in use. Enumeration: 'notInUse': 2, 'inUse': 1.
                     secyRxSCCurrentSA 1.0.8802.1.1.3.1.1.4.1.3 rowpointer read-only
The current receiving association number of the SC in use. The row pointer will point to an entry in the secyRxSATable. If no such information can be identified, the value of this object shall be set to the OBJECT IDENTIFIER { 0 0 }.
                     secyRxSCCreatedTime 1.0.8802.1.1.3.1.1.4.1.4 timestamp read-only
The system time when this receiving SC was created.
                     secyRxSCStartedTime 1.0.8802.1.1.3.1.1.4.1.5 timestamp read-only
The system time when this receiving SC last started receiving MACsec frames.
                     secyRxSCStoppedTime 1.0.8802.1.1.3.1.1.4.1.6 timestamp read-only
The system time when this receiving SC last stopped receiving MACsec frames.
             secyRxSATable 1.0.8802.1.1.3.1.1.5 no-access
A table for providing information about the status of each receiving SA supported by the MAC security entity.
                 secyRxSAEntry 1.0.8802.1.1.3.1.1.5.1 no-access
An entry containing receiving SA management information applicable to a particular SA.
                     secyRxSA 1.0.8802.1.1.3.1.1.5.1.1 secyan no-access
The association number (AN) for identifying a receiving SA.
                     secyRxSAState 1.0.8802.1.1.3.1.1.5.1.2 integer read-only
The current state for the receiving SA. Enumeration: 'notInUse': 2, 'inUse': 1.
                     secyRxSANextPN 1.0.8802.1.1.3.1.1.5.1.3 unsigned32 read-write
The stored packet number (PN) for replay protection in the SA. If the PN of any receiving frames is less than the value of this object minus the value of secyReplayProtectWindow and secyReplayProtectEnable is true, the receiving frames should be discarded.
                     secyRxSASAKUnchanged 1.0.8802.1.1.3.1.1.5.1.4 truthvalue read-only
A reference to an SAK that is unchanged for the life of the receiving SA.
                     secyRxSACreatedTime 1.0.8802.1.1.3.1.1.5.1.5 timestamp read-only
The system time when this receiving SA was created.
                     secyRxSAStartedTime 1.0.8802.1.1.3.1.1.5.1.6 timestamp read-only
The system time when this receiving SA last started receiving MACsec frames.
                     secyRxSAStoppedTime 1.0.8802.1.1.3.1.1.5.1.7 timestamp read-only
The system time when this receiving SA last stopped receiving MACsec frames.
             secyCipherSuiteTable 1.0.8802.1.1.3.1.1.6 no-access
The table of selectable cipher suites for the MAC security entity. For the writeable objects in this table, the configured value shall be stored in persistent memory and remain unchanged across a re-initialization of the management system of the entity.
                 secyCipherSuiteEntry 1.0.8802.1.1.3.1.1.6.1 no-access
An entry containing the management information for a cipher suite.
                     secyCipherSuiteIndex 1.0.8802.1.1.3.1.1.6.1.1 unsigned32 no-access
The index to recognize a Cipher Suite in the system.
                     secyCipherSuiteId 1.0.8802.1.1.3.1.1.6.1.2 octet string read-only
The identifier for the cipher suite. This is a global unique 64-bit (EUI-64) identifier.
                     secyCipherSuiteName 1.0.8802.1.1.3.1.1.6.1.3 snmpadminstring read-only
The name of the cipher suite. If the name is composed of multi-byte characters, the total length must fit within 128 octets.
                     secyCipherSuiteCapability 1.0.8802.1.1.3.1.1.6.1.4 bits read-only
The capability of this cipher suite. integrity(0) : integrity protection capability for this cipher suite.. confidentiality(1) : confidentiality protection capability for this cipher suite. offsetConfidentiality(2) : offset confidentiality protection capability for this cipher suite. Bits: 'offsetConfidentiality': 2, 'integrity': 0, 'confidentiality': 1.
                     secyCipherSuiteProtection 1.0.8802.1.1.3.1.1.6.1.5 bits read-only
The protection options of this cipher suite. The options should depend on the object secyCipherSuiteCapability. If the value of secyCipherSuiteCapability is only integerity bit on, users can only choose to turn on integrity bit for this object. If the value of secyCipherSuiteCapability is integrity and confidentiality bits on, users can choose to turn on integrity or confidentiality bits, but if confidentiality bit is on, the integrity bit has to be on. If the value of secyCipherSuiteCapability is integrity and offsetConfidentiality bits on, users can choose to turn on integrity or offsetConfidentiality bits, but if offsetConfidentiality bit is on, the integrity bit has to be on. If the value of secyCipherSuiteCapability is integrity and confidentiality and offsetConfidentiality bits on, users can choose to turn on integrity or confidentiality or offsetConfidentiality bits, but if confidentiality or offsetConfidentiality bits are on, the integrity bit has to be on. integrity(0) : on or off the function of supporting integrity protection for this cipher suite. confidentiality(1) : on or off the function of supporting confidentiality for this cipher suite. offsetConfidentiality(2) : on or off the function of supporting offset confidentiality for this cipher suite. Bits: 'offsetConfidentiality': 2, 'integrity': 0, 'confidentiality': 1.
                     secyCipherSuiteProtectionOffset 1.0.8802.1.1.3.1.1.6.1.6 integer32 read-only
The confidentiality protection offset options of this cipher suite. The options should depend on the choice of secyCipherSuiteProtection. If the value of secyCipherSuiteProtection only turns on integrity bit, users can only choose 0 byte for this object. If the value of secyCipherSuiteProtection only turns on integrity and confidentiality bits, users can only choose 0 byte for this object. If the value of secyCipherSuiteProtection only turns on integrity and offsetConfidentiality bits, users can choose 30 or 50 bytes for this object. If the value of secyCipherSuiteProtection turns on integrity and confidentiality and offsetConfidentiality bits, users can choose 0 or 30 or 50 bytes for this object.
                     secyCipherSuiteDataLengthChange 1.0.8802.1.1.3.1.1.6.1.7 truthvalue read-only
This indicates whether the data length will be changed after encryption by the cipher suite.
                     secyCipherSuiteICVLength 1.0.8802.1.1.3.1.1.6.1.8 unsigned32 read-only
The length of integrity check value (ICV) field.
                     secyCipherSuiteRowStatus 1.0.8802.1.1.3.1.1.6.1.9 rowstatus read-only
The object to create the paramaters for the supported Cipher Suites in the system. If the specified secyCipherSuiteId object information is not supported in the system or the secyCipherSuiteCapability object is not matched the capability of the corresponding specified Cipher Suite in the same entry, the corresponding entry should not be active, i.e., this object should not be 'active' or 'notInService'.
         secyStatsMIBObjects 1.0.8802.1.1.3.1.2
             secyTxSAStatsTable 1.0.8802.1.1.3.1.2.1 no-access
A table that contains the statistics objects for each transmitting SA in the MAC security entity.
                 secyTxSAStatsEntry 1.0.8802.1.1.3.1.2.1.1 no-access
The entry holds the statistics for a transmitting SA. An SA may be reused once a while. When starting using the SA, the counters of the SA should start at 0. When stopping using the SA, the counters will be stopped incrementing. The timestamps of starting and stopping time are recorded in the secyTxSATable.
                     secyTxSAStatsProtectedPkts 1.0.8802.1.1.3.1.2.1.1.1 counter32 read-only
The number of integrity protected but not encrypted packets for this transmitting SA.
                     secyTxSAStatsEncryptedPkts 1.0.8802.1.1.3.1.2.1.1.2 counter32 read-only
The number of integrity protected and encrypted packets for this transmitting SA.
             secyTxSCStatsTable 1.0.8802.1.1.3.1.2.2 no-access
A table that contains statistics information for each transmitting SC in the MAC security entity.
                 secyTxSCStatsEntry 1.0.8802.1.1.3.1.2.2.1 no-access
The entry contains the counters of a transmitting SC. Since some counters in the transmitting SA will be reset while the SA is reused, in order to maintain complete statistics information for the SC, the counters information on the SAs need to be kept in the SC. Those counters that may be reset are : secyTxSAStatsProtectedPkts, secyTxSAStatsEncryptedPkts Each counter for a SC is in the summation of the corresponding counter information for all the SAs, current and prior SAs, belonging to this SC.
                     secyTxSCStatsProtectedPkts 1.0.8802.1.1.3.1.2.2.1.1 counter64 read-only
The number of integrity protected but not encrypted packets for this transmitting SC.
                     secyTxSCStatsEncryptedPkts 1.0.8802.1.1.3.1.2.2.1.4 counter64 read-only
The number of integrity protected and encrypted packets for this transmitting SC.
                     secyTxSCStatsOctetsProtected 1.0.8802.1.1.3.1.2.2.1.10 counter64 read-only
The number of plain text octets that are integrity protected but not encrypted on the transmitting SC.
                     secyTxSCStatsOctetsEncrypted 1.0.8802.1.1.3.1.2.2.1.11 counter64 read-only
The number of plain text octets that are integrity protected and encrypted on the transmitting SC.
             secyRxSAStatsTable 1.0.8802.1.1.3.1.2.3 no-access
A table that contains the statistics objects for each receiving SA in the MAC security entity.
                 secyRxSAStatsEntry 1.0.8802.1.1.3.1.2.3.1 no-access
The entry holds the statistics for a receiving SA. An SA may be reused once a while. When starting using the SA, the counters of the SA should start at 0. When stopping using the SA, the counters will be stopped incrementing. The timestamps of starting and stopping time are recorded in the secyRxSATable.
                     secyRxSAStatsUnusedSAPkts 1.0.8802.1.1.3.1.2.3.1.1 counter32 read-only
For this SA which is not currently in use, the number of received, unencrypted, packets with secyValidateFrames not in the strict mode.
                     secyRxSAStatsNoUsingSAPkts 1.0.8802.1.1.3.1.2.3.1.4 counter32 read-only
For this SA which is not currently in use, the number of received packets that have been discarded, and have either the packets encrypted or the secyValidateFrames set to strict mode.
                     secyRxSAStatsNotValidPkts 1.0.8802.1.1.3.1.2.3.1.13 counter32 read-only
For this SA, the number discarded packets with the condition that the packets are not valid and one of the following conditions are true: either secyValidateFrames in strict mode or the packets encrypted.
                     secyRxSAStatsInvalidPkts 1.0.8802.1.1.3.1.2.3.1.16 counter32 read-only
For this SA, the number of packets with the condition that the packets are not valid and secyValidateFrames is in check mode.
                     secyRxSAStatsOKPkts 1.0.8802.1.1.3.1.2.3.1.25 counter32 read-only
For this SA, the number of validated packets.
             secyRxSCStatsTable 1.0.8802.1.1.3.1.2.4 no-access
A table for the statistics information of each receiving SC supported by the MAC security entity.
                 secyRxSCStatsEntry 1.0.8802.1.1.3.1.2.4.1 no-access
The entry contains the counters of a receiving SC. Since some counters in the receiving SA will be reset while the SA is reused, in order to maintain complete statistics information for the SC, the counters information on the SAs need to be kept in the SC. Those counters that may be reset are : secyRxSAStatsUnusedSAPkts, secyRxSAStatsNoUsingSAPkts, secyRxSAStatsNotValidPkts, secyRxSAStatsInvalidPkts, secyRxSAStatsOKPkts Each counter for a SC is in the summation of the corresponding counter information for all the SAs, current and prior SAs, belonging to this SC.
                     secyRxSCStatsUnusedSAPkts 1.0.8802.1.1.3.1.2.4.1.1 counter64 read-only
The summation of counter secyRxSAStatsUnusedSAPkts information for all the SAs which belong to this SC. Since the secyRxSAStatsUnusedSAPkts counters in the SAs will be reset, in order to maintain complete statistics information for the SC, the counter information on the SAs need to be kept in the SC.
                     secyRxSCStatsNoUsingSAPkts 1.0.8802.1.1.3.1.2.4.1.2 counter64 read-only
The summation of counter secyRxSAStatsNoUsingSAPkts information for all the SAs which belong to this SC. Since the secyRxSAStatsNoUsingSAPkts counters in the SAs will be reset, in order to maintain complete statistics information for the SC, the counter information on the SAs need to be kept in the SC.
                     secyRxSCStatsLatePkts 1.0.8802.1.1.3.1.2.4.1.3 counter64 read-only
For this SC, the number of received packets that have been discarded with the condition : secyReplayProtect is equal to true and the PN of the packet is lower than the lower bound replay check PN.
                     secyRxSCStatsNotValidPkts 1.0.8802.1.1.3.1.2.4.1.4 counter64 read-only
The summation of counter secyRxSAStatsNotValidPkts information for all the SAs which belong to this SC. Since the secyRxSAStatsNotValidPkts counters in the SAs will be reset, in order to maintain complete statistics information for the SC, the counter information on the SAs need to be kept in the SC.
                     secyRxSCStatsInvalidPkts 1.0.8802.1.1.3.1.2.4.1.5 counter64 read-only
The summation of counter secyRxSAStatsInvalidPkts information for all the SAs which belong to this SC. Since the secyRxSAStatsInvalidPkts counters in the SAs will be reset, in order to maintain complete statistics information for the SC, the counter information on the SAs need to be kept in the SC.
                     secyRxSCStatsDelayedPkts 1.0.8802.1.1.3.1.2.4.1.6 counter64 read-only
For this SC, the number of packets with the condition that the PN of the packets is lower than the lower bound replay protection PN.
                     secyRxSCStatsUncheckedPkts 1.0.8802.1.1.3.1.2.4.1.7 counter64 read-only
For this SC, the number of packets with the following condition: -secyValidateFrames is disabled or -secyValidateFrames is not disabled and the packet is not encrypted and the integrity check has failed or -secyValidateFrames is not disable and the packet is encrypted and integrity check has failed.
                     secyRxSCStatsOKPkts 1.0.8802.1.1.3.1.2.4.1.8 counter64 read-only
The summation of counter secyRxSAStatsOKPkts information for all the SAs which belong to this SC. Since the secyRxSAStatsOKPkts counters in the SAs will be reset, in order to maintain complete statistics information for the SC, the counter information on the SAs need to be kept in the SC.
                     secyRxSCStatsOctetsValidated 1.0.8802.1.1.3.1.2.4.1.9 counter64 read-only
The number of octets of plaintext recovered from received packets that were integrity protected but not encrypted.
                     secyRxSCStatsOctetsDecrypted 1.0.8802.1.1.3.1.2.4.1.10 counter64 read-only
The number of octets of plaintext recovered from received packets that were integrity protected and encrypted.
             secyStatsTable 1.0.8802.1.1.3.1.2.5 no-access
A table for the statistics information of each SecY supported by the MAC security entity.
                 secyStatsEntry 1.0.8802.1.1.3.1.2.5.1 no-access
An entry containing counters for statistics or diagnosis for a SecY.
                     secyStatsTxUntaggedPkts 1.0.8802.1.1.3.1.2.5.1.1 counter64 read-only
The number of transmitted packets without the MAC security tag (SecTAG) because secyProtectFramesEnable is configured as false.
                     secyStatsTxTooLongPkts 1.0.8802.1.1.3.1.2.5.1.2 counter64 read-only
The number of transmitted packets discarded because the packet length is greater than the ifMtu of the Common Port interface.
                     secyStatsRxUntaggedPkts 1.0.8802.1.1.3.1.2.5.1.3 counter64 read-only
The number of received packets without the MAC security tag (SecTAG) with secyValidateFrames which is not in the strict mode.
                     secyStatsRxNoTagPkts 1.0.8802.1.1.3.1.2.5.1.4 counter64 read-only
The number of received packets discarded without the MAC security tag (SecTAG) with secyValidateFrames which is in the strict mode.
                     secyStatsRxBadTagPkts 1.0.8802.1.1.3.1.2.5.1.5 counter64 read-only
The number of received packets discarded with an invalid SecTAG or a zero value PN or an invalid ICV.
                     secyStatsRxUnknownSCIPkts 1.0.8802.1.1.3.1.2.5.1.6 counter64 read-only
The number of received packets with unknown SCI with the condition : secyValidateFrames is not in the strict mode and the C bit in the SecTAG is not set.
                     secyStatsRxNoSCIPkts 1.0.8802.1.1.3.1.2.5.1.7 counter64 read-only
The number of received packets discarded with unknown SCI information with the condition : secyValidateFrames is in the strict mode or the C bit in the SecTAG is set.
                     secyStatsRxOverrunPkts 1.0.8802.1.1.3.1.2.5.1.8 counter64 read-only
The number of packets discarded because the number of received packets exceeded the cryptographic performance capabilities.
     secyMIBConformance 1.0.8802.1.1.3.2
         secyMIBCompliances 1.0.8802.1.1.3.2.1
             secyMIBCompliance 1.0.8802.1.1.3.2.1.1
The compliance statement for entities which implement the IEEE8021-SECY-MIB.
         secyMIBGroups 1.0.8802.1.1.3.2.2
             secyIfCtrlGroup 1.0.8802.1.1.3.2.2.1
A collection of objects providing a SecY control management information.
             secyTxSCGroup 1.0.8802.1.1.3.2.2.2
A collection of objects providing a transmitting SC control management information.
             secyTxSAGroup 1.0.8802.1.1.3.2.2.3
A collection of objects providing a transmitting SA control management information.
             secyRxSCGroup 1.0.8802.1.1.3.2.2.4
A collection of objects providing a receiving SC control management information.
             secyRxSAGroup 1.0.8802.1.1.3.2.2.5
A collection of objects providing a receiving SA control management information.
             secyCipherSuiteGroup 1.0.8802.1.1.3.2.2.6
A collection of objects providing a cipher suite information.
             secyTxSAStatsGroup 1.0.8802.1.1.3.2.2.7
A collection of objects providing a transmitting SA statistics information.
             secyRxSAStatsGroup 1.0.8802.1.1.3.2.2.8
A collection of objects providing a receiving SA statistics information.
             secyTxSCStatsGroup 1.0.8802.1.1.3.2.2.9
A collection of objects providing a transmitting SC statistics information.
             secyRxSCStatsGroup 1.0.8802.1.1.3.2.2.10
A collection of objects providing a receiving SC statistics information.
             secyStatsGroup 1.0.8802.1.1.3.2.2.11
A collection of objects providing a SecY statistics information.