Using SEND Signature Algorithm Agility and Multiple-Key CGA to Secure Proxy Neighbor Discovery and Anycast Addressing
The Neighbor Discovery Protocol (NDP) is a fundamental component of the IPv6 protocol suite in charge of the Link-layer interactions (Address Resolution, Router Discovery, etc.). Over the years, it has been extended to new usages, such as mobility (Mobile IPv6), proxy advertisements (neighbor discovery proxies) and security (SEcure Neighbor Discovery, SEND). However, SEND's protection is currently incompatible with two NDP functions, namely the proxy neighbor discovery function (used in Mobile IPv6) and the IPv6 any cast addresses (i.e. shared addresses on a same link).