Secure Neighbor Discovery: Difference between revisions

This article includes a list of references, related reading, or external links, but its sources remain unclear because it lacks inline citations. Please help improve this article by introducing more precise citations. (January 2011) (Learn how and when to remove this message)

The SEcure Neighbor Discovery (SEND) protocol is a security extension of the Neighbor Discovery Protocol (NDP) in IPv6. SEND is defined in RFC 3971 (2005).

The Neighbor Discovery Protocol (NDP) is responsible in IPv6 for discovery of other network nodes on the local link, to determine the link layer addresses of other nodes, and to find available routers, and maintain reachability information about the paths to other active neighbor nodes (RFC 4861). This protocol is insecure and susceptible to malicious interference. It is the intent of SEcure Neighbor Discovery to provide an alternate mechanism for securing NDP with a cryptographic method that is independent of IPsec, the original and inherent method of securing IPv6 communications.

SEND protocol uses Cryptographically Generated Addresses.

• USL SEND (discontinued), NTT DoCoMo
• Docomo USL SEND fork
• NDprotector, Telecom SudParis
• ipv6-send-cga, Huawei and Beijing University of Posts and Telecommunications
• Easy-SEND
• Native SeND kernel API

• Neighbor Discovery Protocol

• RFC 3971, "SEcure Neighbor Discovery (SEND)", J.Arkko (Ed.), et al., March 2005
• RFC 4861, "Neighbor Discovery for IP version 6 (IPv6)", T.Narten, et al., September 2007

This computer networking article is a stub. You can help Wikipedia by expanding it.

• v
• t
• e