Skip to main content

Russ Housley

Russ Housley has worked in the computer and network security field since 1982, and he founded Vigil Security, LLC in September 2002. Russ served as the IETF Chair from March 2007 to March 2013. Russ served on the IAB from March 2007 to March 2017, and he served as IAB Chair from March 2013 to March 2015. Russ served as a member of the Internet Research Steering Group (IRSG) from May 2013 to March 2017. Russ served as Security Area Director from March 2003 to March 2007. His security research and standards interests include security protocols, certificate management, cryptographic key distribution, and high assurance design and development practices. In November 2004, Russ was recognized by the IEEE 802.11 working group for his contributions to IEEE 802.11i-2004, which fixes the severe security shortcoming of the Wired Equivalent Privacy (WEP). Russ received his B.S. in computer science from Virginia Tech in 1982, and he received his M.S. in computer science from George Mason University in 1992.

Roles

Role Group Email
Chair RFC Series Working Group (rswg) housley@vigilsec.com
Chair Secure Telephone Identity Revisited (stir) housley@vigilsec.com
Chair Community Coordination Group (ccg) housley@vigilsec.com
Chair Limited Additional Mechanisms for PKIX and SMIME (lamps) housley@vigilsec.com
Chair SIDR Operations (sidrops) housley@vigilsec.com
Lead IETF-IANA (ietfiana) housley@vigilsec.com
Lead IETF-IEEE (ietfieee) housley@vigilsec.com
Liaison Manager IEEE-SA (ieee-sa) housley@vigilsec.com
Liaison Contact Secure Telephone Identity Revisited (stir) housley@vigilsec.com
Member The Tools Team (tools) housley@vigilsec.com
Reviewer General Area Review Team (Gen-ART) (genart) housley@vigilsec.com
Reviewer ART Area Review Team (artart) housley@vigilsec.com
Reviewer Security Area Directorate (secdir) housley@vigilsec.com
Reviewer Internet of Things Directorate (iotdir) housley@vigilsec.com

RFCs (111)

RFC Date Title Cited by
RFC 1457 May 1993 Security Label Framework for the Internet 2 RFCs
RFC 2459 Jan 1999 Internet X.509 Public Key Infrastructure Certificate and CRL Profile 45 RFCs
RFC 2528 Mar 1999 Internet X.509 Public Key Infrastructure Representation of Key Exchange Algorithm (KEA) Keys in Internet X.509 Public Key Infrastructure Certificates 3 RFCs
RFC 2585 May 1999 Internet X.509 Public Key Infrastructure Operational Protocols: FTP and HTTP 26 RFCs
RFC 2630 Jun 1999 Cryptographic Message Syntax 47 RFCs
RFC 2773 Feb 2000 Encryption using KEA and SKIPJACK 3 RFCs
RFC 2943 Sep 2000 TELNET Authentication Using DSA 1 RFC
RFC 2951 Sep 2000 TELNET Authentication Using KEA and SKIPJACK 1 RFC
RFC 3217 Dec 2001 Triple-DES and RC2 Key Wrapping 5 RFCs
RFC 3279 May 2002 Algorithms and Identifiers for the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile 54 RFCs
RFC 3280 May 2002 Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile 104 RFCs
RFC 3281 May 2002 An Internet Attribute Certificate Profile for Authorization 24 RFCs
RFC 3369 Sep 2002 Cryptographic Message Syntax (CMS) 16 RFCs
RFC 3370 Sep 2002 Cryptographic Message Syntax (CMS) Algorithms 43 RFCs
RFC 3378 Sep 2002 EtherIP: Tunneling Ethernet Frames in IP Datagrams
RFC 3379 Sep 2002 Delegated Path Validation and Delegated Path Discovery Protocol Requirements 3 RFCs
RFC 3394 Oct 2002 Advanced Encryption Standard (AES) Key Wrap Algorithm 29 RFCs
RFC 3537 May 2003 Wrapping a Hashed Message Authentication Code (HMAC) key with a Triple-Data Encryption Standard (DES) Key or an Advanced Encryption Standard (AES) Key 3 RFCs
RFC 3560 Jul 2003 Use of the RSAES-OAEP Key Transport Algorithm in Cryptographic Message Syntax (CMS) 12 RFCs
RFC 3610 Sep 2003 Counter with CBC-MAC (CCM) 19 RFCs
RFC 3686 Jan 2004 Using Advanced Encryption Standard (AES) Counter Mode With IPsec Encapsulating Security Payload (ESP) 24 RFCs
RFC 3709 Feb 2004 Internet X.509 Public Key Infrastructure: Logotypes in X.509 Certificates 3 RFCs
RFC 3770 May 2004 Certificate Extensions and Attributes Supporting Authentication in Point-to-Point Protocol (PPP) and Wireless Local Area Networks (WLAN) 2 RFCs
RFC 3852 Jul 2004 Cryptographic Message Syntax (CMS) 68 RFCs
RFC 3874 Sep 2004 A 224-bit One-way Hash Function: SHA-224 7 RFCs
RFC 4049 Apr 2005 BinaryTime: An Alternate Format for Representing Date and Time in ASN.1 3 RFCs
RFC 4055 Jun 2005 Additional Algorithms and Identifiers for RSA Cryptography for use in the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile 41 RFCs
RFC 4073 May 2005 Protecting Multiple Contents with the Cryptographic Message Syntax (CMS) 8 RFCs
RFC 4107 Jun 2005 Guidelines for Cryptographic Key Management 33 RFCs
RFC 4108 Aug 2005 Using Cryptographic Message Syntax (CMS) to Protect Firmware Packages 16 RFCs
RFC 4309 Dec 2005 Using Advanced Encryption Standard (AES) CCM Mode with IPsec Encapsulating Security Payload (ESP) 15 RFCs
RFC 4325 Dec 2005 Internet X.509 Public Key Infrastructure Authority Information Access Certificate Revocation List (CRL) Extension 1 RFC
RFC 4334 Feb 2006 Certificate Extensions and Attributes Supporting Authentication in Point-to-Point Protocol (PPP) and Wireless Local Area Networks (WLAN) 5 RFCs
RFC 4630 Aug 2006 Update to DirectoryString Processing in the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile 3 RFCs
RFC 4705 Oct 2006 GigaBeam High-Speed Radio Link Encryption 1 RFC
RFC 4853 Apr 2007 Cryptographic Message Syntax (CMS) Multiple Signer Clarification 2 RFCs
RFC 4962 Jul 2007 Guidance for Authentication, Authorization, and Accounting (AAA) Key Management 18 RFCs
RFC 5008 Sep 2007 Suite B in Secure/Multipurpose Internet Mail Extensions (S/MIME) 2 RFCs
RFC 5055 Dec 2007 Server-Based Certificate Validation Protocol (SCVP) 12 RFCs
RFC 5083 Nov 2007 Cryptographic Message Syntax (CMS) Authenticated-Enveloped-Data Content Type 25 RFCs
RFC 5084 Nov 2007 Using AES-CCM and AES-GCM Authenticated Encryption in the Cryptographic Message Syntax (CMS) 15 RFCs
RFC 5280 May 2008 Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile 296 RFCs
RFC 5430 Mar 2009 Suite B Profile for Transport Layer Security (TLS) 3 RFCs
RFC 5480 Mar 2009 Elliptic Curve Cryptography Subject Public Key Information 37 RFCs
RFC 5485 Mar 2009 Digital Signatures on Internet-Draft Documents 5 RFCs
RFC 5649 Sep 2009 Advanced Encryption Standard (AES) Key Wrap with Padding Algorithm 15 RFCs
RFC 5652 Sep 2009 Cryptographic Message Syntax (CMS) 112 RFCs
RFC 5742 Dec 2009 IESG Procedures for Handling of Independent and IRTF Stream Submissions 8 RFCs
RFC 5755 Jan 2010 An Internet Attribute Certificate Profile for Authorization 15 RFCs
RFC 5756 Jan 2010 Updates for RSAES-OAEP and RSASSA-PSS Algorithm Parameters 3 RFCs
RFC 5781 Feb 2010 The rsync URI Scheme 13 RFCs
RFC 5877 May 2010 The application/pkix-attr-cert Media Type for Attribute Certificates 1 RFC
RFC 5878 May 2010 Transport Layer Security (TLS) Authorization Extensions 5 RFCs
RFC 5914 Jun 2010 Trust Anchor Format 11 RFCs
RFC 5934 Aug 2010 Trust Anchor Management Protocol (TAMP) 9 RFCs
RFC 5940 Aug 2010 Additional Cryptographic Message Syntax (CMS) Revocation Information Choices 1 RFC
RFC 6010 Sep 2010 Cryptographic Message Syntax (CMS) Content Constraints Extension 9 RFCs
RFC 6019 Sep 2010 BinaryTime: An Alternate Format for Representing Date and Time in ASN.1 7 RFCs
RFC 6031 Dec 2010 Cryptographic Message Syntax (CMS) Symmetric Key Package Content Type 10 RFCs
RFC 6032 Dec 2010 Cryptographic Message Syntax (CMS) Encrypted Key Package Content Type 8 RFCs
RFC 6170 May 2011 Internet X.509 Public Key Infrastructure -- Certificate Image 2 RFCs
RFC 6318 Jun 2011 Suite B in Secure/Multipurpose Internet Mail Extensions (S/MIME) 2 RFCs
RFC 6360 Aug 2011 Conclusion of FYI RFC Sub-Series 2 RFCs
RFC 6410 Oct 2011 Reducing the Standards Track to Two Maturity Levels 10 RFCs
RFC 6460 Jan 2012 Suite B Profile for Transport Layer Security (TLS) 5 RFCs
RFC 6852 Jan 2013 Affirmation of the Modern Paradigm for Standards 1 RFC
RFC 7020 Aug 2013 The Internet Numbers Registry System 6 RFCs
RFC 7036 Oct 2013 Object Identifier Registry for the Long-Term Archive and Notary Services (LTANS) Working Group
RFC 7107 Jan 2014 Object Identifier Registry for the S/MIME Mail Security Working Group 2 RFCs
RFC 7191 Apr 2014 Cryptographic Message Syntax (CMS) Key Package Receipt and Error Content Types 5 RFCs
RFC 7193 Apr 2014 The application/cms Media Type 3 RFCs
RFC 7210 Apr 2014 Database of Long-Lived Symmetric Cryptographic Keys 5 RFCs
RFC 7229 May 2014 Object Identifiers for Test Certificate Policies 1 RFC
RFC 7249 May 2014 Internet Numbers Registries 4 RFCs
RFC 7299 Jul 2014 Object Identifier Registry for the PKIX Working Group 5 RFCs
RFC 7500 Apr 2015 Principles for Operation of Internet Assigned Numbers Authority (IANA) Registries 1 RFC
RFC 7696 Nov 2015 Guidelines for Cryptographic Algorithm Agility and Selecting Mandatory-to-Implement Algorithms 14 RFCs
RFC 7760 Jan 2016 Statement of Work for Extensions to the IETF Datatracker for Author Statistics
RFC 7906 Jun 2016 NSA's Cryptographic Message Syntax (CMS) Key Management Attributes 1 RFC
RFC 7979 Aug 2016 Response to the IANA Stewardship Transition Coordination Group (ICG) Request for Proposals on the IANA Protocol Parameters Registries 1 RFC
RFC 8090 Feb 2017 Appointment Procedures for the IETF Representatives to the Community Coordination Group (CCG)
RFC 8103 Feb 2017 Using ChaCha20-Poly1305 Authenticated Encryption in the Cryptographic Message Syntax (CMS)
RFC 8358 Mar 2018 Update to Digital Signatures on Internet-Draft Documents
RFC 8399 May 2018 Internationalization Updates to RFC 5280
RFC 8418 Aug 2018 Use of the Elliptic Curve Diffie-Hellman Key Agreement Algorithm with X25519 and X448 in the Cryptographic Message Syntax (CMS) 3 RFCs
RFC 8419 Aug 2018 Use of Edwards-Curve Digital Signature Algorithm (EdDSA) Signatures in the Cryptographic Message Syntax (CMS) 2 RFCs
RFC 8423 Jul 2018 Reclassification of Suite B Documents to Historic Status
RFC 8591 Apr 2019 SIP-Based Messaging with S/MIME
RFC 8619 Jun 2019 Algorithm Identifiers for the HMAC-based Extract-and-Expand Key Derivation Function (HKDF) 1 RFC
RFC 8649 Aug 2019 Hash Of Root Key Certificate Extension 1 RFC
RFC 8696 Dec 2019 Using Pre-Shared Key (PSK) in the Cryptographic Message Syntax (CMS) 1 RFC
RFC 8708 Feb 2020 Use of the HSS/LMS Hash-Based Signature Algorithm in the Cryptographic Message Syntax (CMS)
RFC 8720 Feb 2020 Principles for Operation of Internet Assigned Numbers Authority (IANA) Registries
RFC 8729 Feb 2020 The RFC Series and RFC Editor 1 RFC
RFC 8773 Mar 2020 TLS 1.3 Extension for Certificate-Based Authentication with an External Pre-Shared Key 1 RFC
RFC 8778 Apr 2020 Use of the HSS/LMS Hash-Based Signature Algorithm with CBOR Object Signing and Encryption (COSE) 2 RFCs
RFC 8862 Jan 2021 Best Practices for Securing RTP Media Signaled with SIP 1 RFC
RFC 8933 Oct 2020 Update to the Cryptographic Message Syntax (CMS) for Algorithm Identifier Protection 2 RFCs
RFC 9044 Jun 2021 Using the AES-GMAC Algorithm with the Cryptographic Message Syntax (CMS) 1 RFC
RFC 9045 Jun 2021 Algorithm Requirements Update to the Internet X.509 Public Key Infrastructure Certificate Request Message Format (CRMF) 1 RFC
RFC 9092 Jul 2021 Finding and Using Geofeed Data
RFC 9118 Aug 2021 Enhanced JSON Web Token (JWT) Claim Constraints for Secure Telephone Identity Revisited (STIR) Certificates
RFC 9158 Nov 2021 Update to the Object Identifier Registry for the PKIX Working Group
RFC 9169 Dec 2021 New ASN.1 Modules for the Evidence Record Syntax (ERS)
RFC 9255 Jun 2022 The 'I' in RPKI Does Not Stand for Identity 1 RFC
RFC 9257 Jul 2022 Guidance for External Pre-Shared Key (PSK) Usage in TLS
RFC 9310 Jan 2023 X.509 Certificate Extension for 5G Network Function Types
RFC 9321 Oct 2022 Signature Validation Token
RFC 9399 May 2023 Internet X.509 Public Key Infrastructure: Logotypes in X.509 Certificates
RFC 9459 Sep 2023 CBOR Object Signing and Encryption (COSE): AES-CTR and AES-CBC
RFC 9549 Mar 2024 Internationalization Updates to RFC 5280

Active Internet-Drafts (16)

Expired Internet-Drafts (84)

(Excluding replaced Internet-Drafts.)

Internet-Draft Activity