CIM211 Class Declaration
CIM_ESPTransform

Table of Contents:
Class Hierarchy
Class Attributes
Class Qualifiers
Properties
Methods
Associations in which the class can participate
Sub Profiling Summary

Class Hierarchy

CIM_ESPTransform --> CIM_SATransform --> CIM_ScopedSettingData --> CIM_SettingData --> CIM_ManagedElement --> [top]

Class Attributes

Class Declaration Attributes
NameValue
SUPERCLASSCIM_SATransform
NAMECIM_ESPTransform

Class Qualifiers

Class CIM_ESPTransform Qualifiers
NameTypeValueFrom Class
Versionstring2.8.0 CIM_ESPTransform
DescriptionstringESPTransform defines the parameters used for a phase 2 ESP (Encapsulating Security Protocol) Security Association. CIM_ESPTransform
MappingStringsstringIPSP Model.IETF|ESPTransform CIM_ESPTransform
DescriptionstringSATransform is the base class for the various types of transforms that are in effect for an existing IPsecSAEndpoint, or aggregated into phase 2 proposals used during the IPsec negotiation process. This class is defined as a kind of ScopedSettingData, since it describes the set of transform properties that MUST be applied together, if negotiated. This subclassing is different than that defined in IETF ’ s IPSP Policy draft - where it is subclassed from Policy. The definition as SettingData is more consistent with the application of the properties as a set, to the negotiated Security Association. Note that an instance of this class is ’ scoped ’ or contained by a System (either a ComputerSystem or AdminDomain), rather than by a SecurityAssociationEndpoint. This is indicated by instantiating the ScopedSetting association, and is necessary since the transform data is used in IPsec negotiation policies (also scoped by Systems) before ever being associated with a SecurityAssociationEndpoint. The latter semantics (i.e., that ’ this ’ transform is negotiated for ’ this ’ Security Association) is conveyed via a subclass of ElementSettingData, TransformOfSecurityAssociation. CIM_SATransform
MappingStringsstringIPSP Model.IETF|SATransform CIM_SATransform
DescriptionstringThe ScopedSettingData class represents the general concept of SettingData, which is scoped or contained by a ManagedElement (that is, settings that are specifically defined for a system, device, and so on). ScopedSettingData is tied to a ManagedElement using the ScopedSetting association. Note that the cardinality of the ManagedElement reference is Min(1), Max(1). This cardinality mandates the instantiation of the ScopedSetting association for the referenced instance of ScopedSettingData. ScopedSetting describes the existence requirements and context for the referenced instance of ManagedElement. Specifically, the ManagedElement must exist and it provides the context for the ScopedSettingData. CIM_ScopedSettingData
DescriptionstringThe SettingData class represents configuration-related and operational parameters for one or more ManagedElements. A ManagedElement can have multiple SettingData objects associated with it. The current operational values for the parameters of the element are reflected by properties in the Element itself or by properties in its associations. These properties do not have to be the same values that are present in the SettingData object. For example, a modem might have a SettingData baud rate of 56Kb/sec but be operating at 19.2Kb/sec. Note: The CIM_SettingData class is very similar to CIM_Setting, yet both classes are present in the model because many implementations have successfully used CIM_Setting. However, issues have arisen that could not be resolved without defining a new class. Therefore, until a new major release occurs, both classes will exist in the model. Refer to the Core White Paper for additional information. SettingData instances can be aggregated together into higher- level SettingData objects using ConcreteComponent associations. CIM_SettingData
DescriptionstringManagedElement is an abstract class that provides a common superclass (or top of the inheritance tree) for the non-association classes in the CIM Schema. CIM_ManagedElement

Properties

Properties
NameTypeValueQualifiersClassOrigin
IntegrityTransformIduint16 Description
ValueMap
Values
MappingStrings
ModelCorrespondence
CIM_ESPTransform
OtherIntegrityTransformIdstring Description
ModelCorrespondence
CIM_ESPTransform
CipherTransformIduint16 Description
ValueMap
Values
MappingStrings
ModelCorrespondence
CIM_ESPTransform
OtherCipherTransformIdstring Description
ModelCorrespondence
CIM_ESPTransform
CipherKeyLengthuint16 Description
Units
MappingStrings
CIM_ESPTransform
CipherKeyRoundsuint16 Description
MappingStrings
CIM_ESPTransform
UseReplayPreventionboolean Description
MappingStrings
CIM_ESPTransform
ReplayPreventionWindowSizeuint32 Description
Units
MappingStrings
CIM_ESPTransform
ElementNamestring MappingStrings
Required
Override
Description
CIM_SATransform
MaxLifetimeSecondsuint640 Description
Units
MappingStrings
CIM_SATransform
MaxLifetimeKilobytesuint640 Description
Units
MappingStrings
CIM_SATransform
VendorIDstringnoneDescription
MappingStrings
CIM_SATransform
InstanceIDstring Key
Description
CIM_SettingData
Captionstring Description
MaxLen
CIM_ManagedElement
Descriptionstring Description CIM_ManagedElement

Property Qualifiers

Property IntegrityTransformId Qualifiers
NameTypeValueFrom Class
DescriptionstringIntegrityTransformId is an enumeration that specifies the ESP integrity algorithm to be used. The list of values is generated from the enumeration defined in RFC2407, Section 4.5. Note that the enumeration is different than the RFC list, since the values of Other and None are taken into account. Also, note that 2 ( " None " ) is used when ESP is negotiated without authentication. CIM_ESPTransform
ValueMapstring
[See below.]
CIM_ESPTransform
ValuesstringOther
None
MD5
SHA-1
DES
KPDK
DMTF/IANA Reserved
Vendor Reserved
CIM_ESPTransform
MappingStringsstringIPSP Model.IETF|ESPTransform.IntegrityTransformId
RFC2407.IETF|Section 4.5
CIM_ESPTransform
ModelCorrespondencestringCIM_ESPTransform.OtherIntegrityTransformId CIM_ESPTransform

NameValue
1Other
2None
3MD5
4SHA-1
5DES
6KPDK
7..61439DMTF/IANA Reserved
61440..65535Vendor Reserved
Property OtherIntegrityTransformId Qualifiers
NameTypeValueFrom Class
DescriptionstringDescription of the integrity algorithm when the value 1 ( " Other " ) is specified for the property, IntegrityTransformId. CIM_ESPTransform
ModelCorrespondencestringCIM_ESPTransform.IntegrityTransformId CIM_ESPTransform

Property CipherTransformId Qualifiers
NameTypeValueFrom Class
DescriptionstringCipherTransformId is an enumeration that specifies the ESP encrypion algorithm to be used. The list of values is defined in RFC2407, Section 4.4.4, where the RFC ’ s NULL value maps to 2- " None " . Note that the enumeration is different than the RFC list, since ’ Other ’ is added to the enumeration. CIM_ESPTransform
ValueMapstring
[See below.]
CIM_ESPTransform
ValuesstringOther
None
DES_IV64
DES
3DES
RC5
IDEA
CAST
Blowfish
3-IDEA
DES_IV32
RC4
CIM_ESPTransform
MappingStringsstringIPSP Model.IETF|ESPTransform.CipherTransformId
RFC2407.IETF|Section 4.4.4
CIM_ESPTransform
ModelCorrespondencestringCIM_ESPTransform.OtherCipherTransformId CIM_ESPTransform

NameValue
1Other
2None
3DES_IV64
4DES
53DES
6RC5
7IDEA
8CAST
9Blowfish
103-IDEA
11DES_IV32
12RC4
Property OtherCipherTransformId Qualifiers
NameTypeValueFrom Class
DescriptionstringDescription of the encryption algorithm when the value 1 ( " Other " ) is specified for the property, CipherTransformId. CIM_ESPTransform
ModelCorrespondencestringCIM_ESPTransform.CipherTransformId CIM_ESPTransform

Property CipherKeyLength Qualifiers
NameTypeValueFrom Class
DescriptionstringCipherKeyLength specifies, in bits, the key length for the encryption algorithm. For algorithms with fixed key lengths, this value is ignored. CIM_ESPTransform
UnitsstringBits CIM_ESPTransform
MappingStringsstringIPSP Model.IETF|ESPTransform.CipherKeyLength CIM_ESPTransform

Property CipherKeyRounds Qualifiers
NameTypeValueFrom Class
DescriptionstringCipherKeyRounds specifies the key rounds for the encryption algorithm. For algorithms with a fixed number of key rounds, this value is ignored. Currently, key rounds are NOT defined for any ESP encryption algorithms. CIM_ESPTransform
MappingStringsstringIPSP Model.IETF|ESPTransform.CipherKeyRounds CIM_ESPTransform

Property UseReplayPrevention Qualifiers
NameTypeValueFrom Class
DescriptionstringUseReplayPrevention causes the local peer to enable replay prevention detection. This can be accomplished by using a sequence number when sending a packet or checking the sequence number upon receipt of a packet. CIM_ESPTransform
MappingStringsstringIPSP Model.IETF|ESPTransform.UseReplayPrevention CIM_ESPTransform

Property ReplayPreventionWindowSize Qualifiers
NameTypeValueFrom Class
DescriptionstringReplayPreventionWindowsSize specifies, in bits, the length of the sliding window used by the replay prevention mechanism. The value of this property is meaningless if UseReplayPrevention is false. The window size MUST be a power of 2. CIM_ESPTransform
UnitsstringBits CIM_ESPTransform
MappingStringsstringIPSP Model.IETF|ESPTransform.ReplayPreventionWindowSize CIM_ESPTransform

Property ElementName Qualifiers
NameTypeValueFrom Class
MappingStringsstringIPSP Model.IETF|SATransform.CommonName CIM_SATransform
Requiredbooleantrue CIM_SATransform
OverridestringElementName CIM_SATransform
DescriptionstringThe user-friendly name for this instance of SettingData. In addition, the user-friendly name can be used as an index property for a search or query. (Note: The name does not have to be unique within a namespace.) CIM_SATransform

Property MaxLifetimeSeconds Qualifiers
NameTypeValueFrom Class
DescriptionstringMaxLifetimeSeconds specifies the maximum time that the Security Association should be considered valid after it has been created. A value of 0, the default, indicates that 8 hours should be used. A non-zero value indicates the maximum lifetime in seconds. CIM_SATransform
UnitsstringSeconds CIM_SATransform
MappingStringsstringIPSP Model.IETF|SATransform.MaxLifetimeSeconds CIM_SATransform

Property MaxLifetimeKilobytes Qualifiers
NameTypeValueFrom Class
DescriptionstringMaxLifetimeKilobytes specifies the maximum kilobyte lifetime for a Security Association. Different lifetimes are used, depending on the strength of the encryption algorithm. A value of 0, the default, indicates that no maximum should be defined. A non-zero value specifies the desired kilobyte lifetime. CIM_SATransform
UnitsstringKiloBytes CIM_SATransform
MappingStringsstringIPSP Model.IETF|SATransform.MaxLifetimeKilobytes CIM_SATransform

Property VendorID Qualifiers
NameTypeValueFrom Class
DescriptionstringVendorID identifies vendor-defined transforms. If this field is empty (the default), then this is a standard transform. CIM_SATransform
MappingStringsstringIPSP Model.IETF|SATransform.VendorID CIM_SATransform

Property InstanceID Qualifiers
NameTypeValueFrom Class
Keybooleantrue CIM_SettingData
DescriptionstringWithin the scope of the instantiating Namespace, InstanceID opaquely and uniquely identifies an instance of this class. To ensure uniqueness within the NameSpace, the value of InstanceID should be constructed using the following " preferred " algorithm: < OrgID > : < LocalID > Where < OrgID > and < LocalID > are separated by a colon (:), and where < OrgID > must include a copyrighted, trademarked, or otherwise unique name that is owned by the business entity that is creating or defining the InstanceID or that is a registered ID assigned to the business entity by a recognized global authority. (This requirement is similar to the < Schema Name > _ < Class Name > structure of Schema class names.) In addition, to ensure uniqueness, < OrgID > must not contain a colon (:). When using this algorithm, the first colon to appear in InstanceID must appear between < OrgID > and < LocalID > . < LocalID > is chosen by the business entity and should not be reused to identify different underlying (real-world) elements. If the above " preferred " algorithm is not used, the defining entity must assure that the resulting InstanceID is not reused across any InstanceIDs produced by this or other providers for the NameSpace of this instance. For DMTF-defined instances, the " preferred " algorithm must be used with the < OrgID > set to CIM. CIM_SettingData

Property ElementName Qualifiers
NameTypeValueFrom Class
Requiredbooleantrue CIM_SettingData
OverridestringElementName CIM_SettingData
DescriptionstringThe user-friendly name for this instance of SettingData. In addition, the user-friendly name can be used as an index property for a search or query. (Note: The name does not have to be unique within a namespace.) CIM_SettingData

Property Caption Qualifiers
NameTypeValueFrom Class
DescriptionstringThe Caption property is a short textual description (one- line string) of the object. CIM_ManagedElement
MaxLenuint3264 CIM_ManagedElement

Property Description Qualifiers
NameTypeValueFrom Class
DescriptionstringThe Description property provides a textual description of the object. CIM_ManagedElement

Property ElementName Qualifiers
NameTypeValueFrom Class
DescriptionstringA user-friendly name for the object. This property allows each instance to define a user-friendly name in addition to its key properties, identity data, and description information. Note that the Name property of ManagedSystemElement is also defined as a user-friendly name. But, it is often subclassed to be a Key. It is not reasonable that the same property can convey both identity and a user-friendly name, without inconsistencies. Where Name exists and is not a Key (such as for instances of LogicalDevice), the same information can be present in both the Name and ElementName properties. CIM_ManagedElement

Methods

Method Qualifiers

Parameters

Parameter Qualifiers

Associations this class can participate in

Association
Class
Reference
Class
Role
CIM_ContainedTransformCIM_SATransformPartComponent
CIM_TransformOfPreconfiguredActionCIM_SATransformAntecedent
CIM_TransformOfSecurityAssociationCIM_SATransformSettingData
CIM_ScopedSettingCIM_ScopedSettingDataDependent
CIM_SettingAssociatedToCapabilitiesCIM_SettingDataDependent
CIM_ElementSettingDataCIM_SettingDataSettingData
CIM_ComponentCIM_ManagedElementGroupComponent
CIM_ComponentCIM_ManagedElementPartComponent
CIM_ConcreteComponentCIM_ManagedElementGroupComponent
CIM_ConcreteComponentCIM_ManagedElementPartComponent
CIM_CredentialContextCIM_ManagedElementElementProvidingContext
CIM_DefaultElementCapabilitiesCIM_ManagedElementManagedElement
CIM_DependencyCIM_ManagedElementAntecedent
CIM_DependencyCIM_ManagedElementDependent
CIM_HostedDependencyCIM_ManagedElementAntecedent
CIM_HostedDependencyCIM_ManagedElementDependent
CIM_ScopedSettingCIM_ManagedElementAntecedent
CIM_MetricDefForMECIM_ManagedElementAntecedent
CIM_MetricForMECIM_ManagedElementAntecedent
CIM_RelatedElementCausingErrorCIM_ManagedElementDependent
CIM_RelatedElementCausingErrorCIM_ManagedElementAntecedent
CIM_SparedCIM_ManagedElementAntecedent
CIM_SparedCIM_ManagedElementDependent
CIM_ConcreteDependencyCIM_ManagedElementAntecedent
CIM_ConcreteDependencyCIM_ManagedElementDependent
CIM_ElementAsUserCIM_ManagedElementAntecedent
CIM_RecordAppliesToElementCIM_ManagedElementDependent
CIM_AuthenticationTargetCIM_ManagedElementDependent
CIM_AuthorizationSubjectCIM_ManagedElementDependent
CIM_AuthorizationTargetCIM_ManagedElementDependent
CIM_ElementSoftwareIdentityCIM_ManagedElementDependent
CIM_IsSpareCIM_ManagedElementAntecedent
CIM_ProvidesServiceToElementCIM_ManagedElementDependent
CIM_ElementCapabilitiesCIM_ManagedElementManagedElement
CIM_IdentityContextCIM_ManagedElementElementProvidingContext
CIM_LogicalIdentityCIM_ManagedElementSystemElement
CIM_LogicalIdentityCIM_ManagedElementSameElement
CIM_ConcreteIdentityCIM_ManagedElementSystemElement
CIM_ConcreteIdentityCIM_ManagedElementSameElement
CIM_SWRManageableAspectCIM_ManagedElementSystemElement
CIM_MemberOfCollectionCIM_ManagedElementMember
CIM_MemberPrincipalCIM_ManagedElementMember
CIM_ElementInPolicyRoleCollectionCIM_ManagedElementMember
CIM_OwningCollectionElementCIM_ManagedElementOwningElement
CIM_ParametersForMethodCIM_ManagedElementTheMethod
CIM_ParameterValueSourcesCIM_ManagedElementValueSource
CIM_PolicySetAppliesToElementCIM_ManagedElementManagedElement
CIM_AuthorizationRuleAppliesToTargetCIM_ManagedElementManagedElement
CIM_RoleLimitedToTargetCIM_ManagedElementTargetElement
CIM_StatisticsCIM_ManagedElementElement
CIM_SynchronizedCIM_ManagedElementSystemElement
CIM_SynchronizedCIM_ManagedElementSyncedElement
CIM_StorageSynchronizedCIM_ManagedElementSystemElement
CIM_StorageSynchronizedCIM_ManagedElementSyncedElement
CIM_AssignedIdentityCIM_ManagedElementManagedElement
CIM_AuthorizedSubjectCIM_ManagedElementPrivilegedElement
CIM_AuthorizedTargetCIM_ManagedElementTargetElement
CIM_ElementConformsToProfileCIM_ManagedElementManagedElement
CIM_ElementLocationCIM_ManagedElementElement
CIM_ElementProfileCIM_ManagedElementManagedElement
CIM_ElementSecuritySensitivityCIM_ManagedElementManagedElement
CIM_ElementSettingDataCIM_ManagedElementManagedElement
CIM_ElementStatisticalDataCIM_ManagedElementManagedElement
CIM_OwningJobElementCIM_ManagedElementOwningElement
CIM_AffectedJobElementCIM_ManagedElementAffectedElement
CIM_ServiceAffectsElementCIM_ManagedElementAffectedElement
CIM_ServiceAvailableToElementCIM_ManagedElementUserOfService
CIM_SAPAvailableForElementCIM_ManagedElementManagedElement
CIM_ManagementSAPCIM_ManagedElementManagedElement