Secure DHCPv6

Document Type Expired Internet-Draft (dhc WG)
Authors Lishan Li  , Sheng Jiang  , Yong Cui  , Tatuya Jinmei  , Ted Lemon  , Dacheng Zhang 
Last updated 2017-08-25 (latest revision 2017-02-21)
Replaces draft-jiang-dhc-sedhcpv6
Stream Internet Engineering Task Force (IETF)
Expired & archived
pdf htmlized bibtex
Additional Resources
- Mailing list discussion
Stream WG state WG Document
Revised I-D Needed - Issue raised by AD, Other - see Comment Log
Document shepherd Tomek Mrugalski
Shepherd write-up Show (last changed 2015-01-29)
IESG IESG state Expired (IESG: Dead)
Consensus Boilerplate Unknown
Telechat date
Responsible AD Suresh Krishnan
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


DHCPv6 includes no deployable security mechanism that can protect end-to-end communication between DHCP clients and servers. This document describes a mechanism for using public key cryptography to provide such security. The mechanism provides encryption in all cases, and can be used for authentication based on pre-sharing of authorized certificates.


Lishan Li (
Sheng Jiang (
Yong Cui (
Tatuya Jinmei (
Ted Lemon (
Dacheng Zhang (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)