SEcure Neighbor Discovery (SEND)

Document Type Expired Internet-Draft (individual)
Author Jari Arkko 
Last updated 2003-06-19
Replaces draft-ietf-send-ipsec
Stream (None)
Intended RFC status (None)
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


IPv6 nodes use the Neighbor Discovery (ND) protocol to discover other nodes on the link, to determine each other's link-layer addresses, to find routers and to maintain reachability information about the paths to active neighbors. If not secured, ND protocol is vulnerable to various attacks. This document specifies security mechanisms for ND. Contrary to the original ND specifications, these mechanisms do not make use of IPsec. The purpose of this draft is to present an alternative to the current approach in the Working Group.


Jari Arkko (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)