A SAVI Solution for WLAN
draft-bi-savi-wlan-24
Document | Type |
Replaced Internet-Draft
(individual)
Expired & archived
|
|
---|---|---|---|
Authors | Jun Bi , Jianping Wu , Tao Lin , You Wang , Lin He | ||
Last updated | 2023-05-19 (Latest revision 2022-11-13) | ||
Replaced by | draft-bi-intarea-savi-wlan | ||
RFC stream | (None) | ||
Intended RFC status | (None) | ||
Formats | |||
Stream | Stream state | (No stream defined) | |
Consensus boilerplate | Unknown | ||
RFC Editor Note | (None) | ||
IESG | IESG state | Replaced by draft-bi-intarea-savi-wlan | |
Telechat date | (None) | ||
Responsible AD | (None) | ||
Send notices to | (None) |
This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:
Abstract
This document describes a source address validation solution for WLANs where 802.11i or other security mechanisms are enabled to secure MAC addresses. This mechanism snoops NDP and DHCP packets to bind IP addresses to MAC addresses, and relies on the security of MAC addresses guaranteed by 802.11i or other mechanisms to filter IP spoofing packets. It can work in the special situations described in the charter of SAVI (Source Address Validation Improvements) workgroup, such as multiple MAC addresses on one interface. This document describes three different deployment scenarios, with solutions for migration of binding entries when hosts move from one access point to another.
Authors
Jun Bi
Jianping Wu
Tao Lin
You Wang
Lin He
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)