Sign in
Version 5.13.0, 2015-03-25
Report a bug

Authenticating BFD using HMAC-SHA-2 procedures

Document type: Expired Internet-Draft (bfd WG)
Document stream: IETF
Last updated: 2015-02-01 (latest revision 2014-07-31)
Intended RFC status: Proposed Standard
Other versions: (expired, archived): plain text, pdf, html

IETF State: WG Document Jan 2015
Document shepherd: No shepherd assigned

IESG State: Expired
Responsible AD: (None)
Send notices to: No addresses provided

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found here:


This document describes the mechanism to authenticate Bidirectional Forwarding Detection (BFD) protocol packets using Hashed Message Authentication Mode (HMAC) with the SHA-256, SHA-384, and SHA-512 algorithms. The described mechanism uses the Generic Cryptographic Authentication and Generic Meticulous Cryptographic Authentication sections to carry the authentication data. This document updates, but does not supersede, the cryptographic authentication mechanism specified in RFC 5880.


Dacheng Zhang <>
Manav Bhatia <>
Vishwas Manral <>
Mahesh Jethanandani <>

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid)