Skip to main content

A SAVI Solution for WLAN

Document Type Replaced Internet-Draft (individual)
Expired & archived
Authors Jun Bi , Jianping Wu , Tao Lin , You Wang , Lin He
Last updated 2023-05-19 (Latest revision 2022-11-13)
Replaced by draft-bi-intarea-savi-wlan
RFC stream (None)
Intended RFC status (None)
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-bi-intarea-savi-wlan
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This document describes a source address validation solution for WLANs where 802.11i or other security mechanisms are enabled to secure MAC addresses. This mechanism snoops NDP and DHCP packets to bind IP addresses to MAC addresses, and relies on the security of MAC addresses guaranteed by 802.11i or other mechanisms to filter IP spoofing packets. It can work in the special situations described in the charter of SAVI (Source Address Validation Improvements) workgroup, such as multiple MAC addresses on one interface. This document describes three different deployment scenarios, with solutions for migration of binding entries when hosts move from one access point to another.


Jun Bi
Jianping Wu
Tao Lin
You Wang
Lin He

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)