1 module iana-ssh-encryption-algs {
3 namespace "urn:ietf:params:xml:ns:yang:iana-ssh-encryption-algs";
7 "Internet Assigned Numbers Authority (IANA)";
11 12025 Waterfront Drive, Suite 300
12 Los Angeles, CA 90094-2536
13 United States of America
15 Email: iana@iana.org";
18 "This module defines identities for the encryption algorithms
19 defined in the 'Encryption Algorithm Names' sub-registry of the
20 'Secure Shell (SSH) Protocol Parameters' registry maintained
23 Copyright (c) 2022 IETF Trust and the persons identified as
24 authors of the code. All rights reserved.
26 Redistribution and use in source and binary forms, with
27 or without modification, is permitted pursuant to, and
28 subject to the license terms contained in, the Revised
29 BSD License set forth in Section 4.c of the IETF Trust's
30 Legal Provisions Relating to IETF Documents
31 (https://trustee.ietf.org/license-info).
33 The initial version of this YANG module is part of RFC EEEE
34 (https://www.rfc-editor.org/info/rfcEEEE); see the RFC
35 itself for full legal notices.";
39 "Reflects contents of the encryption algorithms registry
42 "RFC EEEE: YANG Groupings for SSH Clients and SSH Servers";
47 typedef encryption-algorithm-ref {
49 base "encryption-alg-base";
52 "A reference to a SSH encryption algorithm identifier.";
58 identity encryption-alg-base {
60 "Base identity used to identify encryption algorithms.";
63 identity triple-des-cbc { // YANG IDs cannot begin with a number
64 base encryption-alg-base;
69 The Secure Shell (SSH) Transport Layer Protocol";
72 identity blowfish-cbc {
73 base encryption-alg-base;
78 The Secure Shell (SSH) Transport Layer Protocol";
81 identity twofish256-cbc {
82 base encryption-alg-base;
87 The Secure Shell (SSH) Transport Layer Protocol";
90 identity twofish-cbc {
91 base encryption-alg-base;
96 The Secure Shell (SSH) Transport Layer Protocol";
99 identity twofish192-cbc {
100 base encryption-alg-base;
105 The Secure Shell (SSH) Transport Layer Protocol";
108 identity twofish128-cbc {
109 base encryption-alg-base;
114 The Secure Shell (SSH) Transport Layer Protocol";
117 identity aes256-cbc {
118 base encryption-alg-base;
123 The Secure Shell (SSH) Transport Layer Protocol";
126 identity aes192-cbc {
127 base encryption-alg-base;
132 The Secure Shell (SSH) Transport Layer Protocol";
135 identity aes128-cbc {
136 base encryption-alg-base;
142 The Secure Shell (SSH) Transport Layer Protocol";
145 identity serpent256-cbc {
146 base encryption-alg-base;
151 The Secure Shell (SSH) Transport Layer Protocol";
154 identity serpent192-cbc {
155 base encryption-alg-base;
160 The Secure Shell (SSH) Transport Layer Protocol";
163 identity serpent128-cbc {
164 base encryption-alg-base;
169 The Secure Shell (SSH) Transport Layer Protocol";
173 base encryption-alg-base;
179 Deprecating RC4 in Secure Shell (SSH)";
183 base encryption-alg-base;
188 The Secure Shell (SSH) Transport Layer Protocol";
191 identity cast128-cbc {
192 base encryption-alg-base;
197 The Secure Shell (SSH) Transport Layer Protocol";
201 base encryption-alg-base;
206 The Secure Shell (SSH) Transport Layer Protocol";
210 base encryption-alg-base;
216 Data Encryption Standard (DES)";
219 identity arcfour128 {
220 base encryption-alg-base;
226 Deprecating RC4 in Secure Shell (SSH)";
229 identity arcfour256 {
230 base encryption-alg-base;
236 Deprecating RC4 in Secure Shell (SSH)";
239 identity aes128-ctr {
240 base encryption-alg-base;
246 The Secure Shell (SSH) Transport Layer Encryption Modes";
249 identity aes192-ctr {
250 base encryption-alg-base;
255 The Secure Shell (SSH) Transport Layer Encryption Modes";
258 identity aes256-ctr {
259 base encryption-alg-base;
264 The Secure Shell (SSH) Transport Layer Encryption Modes";
267 identity triple-des-ctr { // YANG IDs cannot begin with a number
268 base encryption-alg-base;
273 The Secure Shell (SSH) Transport Layer Encryption Modes";
276 identity blowfish-ctr {
277 base encryption-alg-base;
282 The Secure Shell (SSH) Transport Layer Encryption Modes";
285 identity twofish128-ctr {
286 base encryption-alg-base;
291 The Secure Shell (SSH) Transport Layer Encryption Modes";
294 identity twofish192-ctr {
295 base encryption-alg-base;
300 The Secure Shell (SSH) Transport Layer Encryption Modes";
303 identity twofish256-ctr {
304 base encryption-alg-base;
309 The Secure Shell (SSH) Transport Layer Encryption Modes";
312 identity serpent128-ctr {
313 base encryption-alg-base;
318 The Secure Shell (SSH) Transport Layer Encryption Modes";
321 identity serpent192-ctr {
322 base encryption-alg-base;
327 The Secure Shell (SSH) Transport Layer Encryption Modes";
330 identity serpent256-ctr {
331 base encryption-alg-base;
336 The Secure Shell (SSH) Transport Layer Encryption Modes";
340 base encryption-alg-base;
345 The Secure Shell (SSH) Transport Layer Encryption Modes";
348 identity cast128-ctr {
349 base encryption-alg-base;
354 The Secure Shell (SSH) Transport Layer Encryption Modes";
357 identity aead-aes-128-gcm {
358 base encryption-alg-base;
363 AES Galois Counter Mode for the
364 Secure Shell Transport Layer Protocol";
367 identity aead-aes-256-gcm {
368 base encryption-alg-base;
373 AES Galois Counter Mode for the
374 Secure Shell Transport Layer Protocol";
377 // Protocol-accessible Nodes
379 container supported-algorithms {
382 "A container for a list of encryption algorithms
383 supported by the server.";
384 leaf-list supported-algorithm {
385 type encryption-algorithm-ref;
387 "An encryption algorithm supported by the server.";