Skip to main content

Secure DHCPv6 with Public Key

Document Type Replaced Internet-Draft (dhc WG)
Expired & archived
Authors Sheng Jiang , Sean Shen
Last updated 2014-01-13 (Latest revision 2013-10-16)
Replaced by draft-ietf-dhc-sedhcpv6
RFC stream Internet Engineering Task Force (IETF)
Intended RFC status (None)
Additional resources Mailing list discussion
Stream WG state Adopted by a WG
Document shepherd (None)
IESG IESG state Replaced by draft-ietf-dhc-sedhcpv6
Consensus boilerplate Unknown
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


The Dynamic Host Configuration Protocol for IPv6 (DHCPv6) enables DHCPv6 servers to pass configuration parameters. It offers configuration flexibility. If not secured, DHCPv6 is vulnerable to various attacks, particularly spoofing attacks. This document analyzes the security issues of DHCPv6 and specifies a Secure DHCPv6 mechanism for communication between DHCPv6 client and server. This mechanism is based on public/private key pairs. The authority of the sender may depend on either pre-configuration mechanism or Public Key Infrastructure.


Sheng Jiang
Sean Shen

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)