Secure DHCPv6

The information below is for an old version of the document
Document Type None Internet-Draft (dhc WG)
Last updated 2016-03-09
Replaces draft-jiang-dhc-sedhcpv6
Stream IETF
Intended RFC status Proposed Standard
Expired & archived
pdf htmlized bibtex
Additional URLs
- Mailing list discussion
Stream WG state (None)
Revised I-D Needed - Issue raised by AD
Document shepherd Tomek Mrugalski
Shepherd write-up Show (last changed 2015-01-29)
IESG IESG state Unknown state
Consensus Boilerplate Unknown
Telechat date
Responsible AD Suresh Krishnan
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


The Dynamic Host Configuration Protocol for IPv6 (DHCPv6) enables DHCPv6 servers to pass configuration parameters. It offers configuration flexibility. If not secured, DHCPv6 is vulnerable to various attacks. This document analyzes the security issues of DHCPv6 and specifies the secure DHCPv6 mechanism for authentication and encryption of messages between a DHCPv6 client and a DHCPv6 server.


Sheng Jiang (
Lishan Li (
Yong Cui (
Tatuya Jinmei (
Ted Lemon (
Dacheng Zhang (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)