Security Considerations for Networks Using SRv6

Document Type Expired Internet-Draft (individual)
Author Charles Perkins 
Last updated 2020-01-02 (latest revision 2019-07-01)
Stream (None)
Intended RFC status (None)
Expired & archived
pdf htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document identifies various threats to networks employing segment routing over an IPv6 transport. Segment Routing inherits potential security vulnerabilities from source routing in general, and from label-switching approaches such as MPLS. The document discusses how common security vulnerabilities may be present in SRv6 networks, depending on the security policies that are imposed.


Charles Perkins (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)