Skip to main content

Security Architecture for DHCP

Document Type Expired Internet-Draft (dhc WG)
Expired & archived
Author Ólafur Guðmundsson
Last updated 1997-08-04
RFC stream Internet Engineering Task Force (IETF)
Intended RFC status (None)
Additional resources Mailing list discussion
Stream WG state WG Document
Document shepherd (None)
IESG IESG state Expired
Consensus boilerplate Unknown
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This document addresses the general security requirements of both v4 and v6 versions of DHCP. This document lists security requirements and proposes as security model, which meets scaling requirements, security requirements and efficiency requirements. The proposed security model uses public key cryptography and a proposed trusted key distribution mechanism to authenticate clients and servers. The authentication protocol can also exchange keying material for more efficiently protecting successive communication between client and server. The security model also addresses securing relay agents.


Ólafur Guðmundsson

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)