Configuring Cryptographically Generated Addresses (CGA) using DHCPv6

Document Type Expired Internet-Draft (dhc WG)
Last updated 2013-05-09 (latest revision 2012-11-05)
Replaces draft-jiang-dhc-cga-config-dhcpv6
Stream IETF
Intended RFC status (None)
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream WG state Dead WG Document
Other - see Comment Log
Document shepherd No shepherd assigned
IESG IESG state Expired
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


A Cryptographically Generated Address is an IPv6 addresses binding with a public/private key pair. However, the current CGA specifications are lack of procedures to enable proper management of the usage of CGAs. This document analyzes the parameters required for the generation of CGA from network configuration and management perspective. The configuration procedures of many CGA-relevant parameters with existing mechanisms are described in the document. Only Sec value has no suitable mechanism to be configured by network admin. A new DHCPv6 option is defined accordingly. This document also analyses the configuration of the parameters, which are used to generate CGAs, using DHCPv6. Although the document does not define new DHCPv6 option to carry these parameters for various reasons, the configuration procedure is described.


Sheng Jiang (
Zhongqi Xia (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)