Secure Neighbor Discovery: Difference between revisions
Line 14: | Line 14: | ||
* [http://sourceforge.net/projects/easy-send/ Easy-SEND] |
* [http://sourceforge.net/projects/easy-send/ Easy-SEND] |
||
* [http://code.google.com/p/google-summer-of-code-2009-freebsd/downloads/detail?name=Ana_Kukec.tar.gz Native SeND kernel API] |
* [http://code.google.com/p/google-summer-of-code-2009-freebsd/downloads/detail?name=Ana_Kukec.tar.gz Native SeND kernel API] |
||
* [http://www.hpi.uni-potsdam.de/meinel/team/mitarbeiter_meinel/ahmad_al_sadeh.html#c14727 WinSEND: SEND implementation for windows] |
|||
==See also== |
==See also== |
Revision as of 13:06, 31 August 2011
This article includes a list of references, related reading, or external links, but its sources remain unclear because it lacks inline citations. (January 2011) |
The SEcure Neighbor Discovery (SEND) protocol is a security extension of the Neighbor Discovery Protocol (NDP) in IPv6. SEND is defined in RFC 3971 (2005).
The Neighbor Discovery Protocol (NDP) is responsible in IPv6 for discovery of other network nodes on the local link, to determine the link layer addresses of other nodes, and to find available routers, and maintain reachability information about the paths to other active neighbor nodes (RFC 4861). This protocol is insecure and susceptible to malicious interference. It is the intent of SEcure Neighbor Discovery to provide an alternate mechanism for securing NDP with a cryptographic method that is independent of IPsec, the original and inherent method of securing IPv6 communications.
SEND protocol uses Cryptographically Generated Addresses.
Implementations
- USL SEND (discontinued), NTT DoCoMo
- Docomo USL SEND fork
- NDprotector, Telecom SudParis
- ipv6-send-cga, Huawei and Beijing University of Posts and Telecommunications
- Easy-SEND
- Native SeND kernel API
See also
References
- RFC 3971, "SEcure Neighbor Discovery (SEND)", J.Arkko (Ed.), et al., March 2005
- RFC 4861, "Neighbor Discovery for IP version 6 (IPv6)", T.Narten, et al., September 2007