Skip to main content

Paul Wouters
Pronouns: he/him

Currently Security AD

IKE / IPsec developer with libreswan for 25 years IETF participant for 15 years, mostly in the security area and DNS Aiven.io Security Software Engineer Fedora / CentOS security software engineer, former Red Hat Enterprise Linux Security Engineer DNS / DNSSEC developer NIST SP800-77 Rev.1 Author ICANN RSTEP, former ICANN liason, former ICANN Root Rollover Design committee, former ICANN newGTLD Registry Services Panel Coffee Snob

Roles

Role Group Email
Area Director Security Area Open Meeting (saag) paul.wouters@aiven.io
Area Director Transport Layer Security (tls) paul.wouters@aiven.io
Area Director Common Authentication Technology Next Generation (kitten) paul.wouters@aiven.io
Area Director Authentication and Authorization for Constrained Environments (ace) paul.wouters@aiven.io
Area Director EAP Method Update (emu) paul.wouters@aiven.io
Area Director DANE Authentication for Network Clients Everywhere (dance) paul.wouters@aiven.io
Area Director Security Area (sec) paul.wouters@aiven.io
Area Director Secure Asset Transfer Protocol (satp) paul.wouters@aiven.io
Area Director Secure Patterns for Internet CrEdentials (spice) paul.wouters@aiven.io
Area Director Open Specification for Pretty Good Privacy (openpgp) paul.wouters@aiven.io
Area Director Post-Quantum Use In Protocols (pquip) paul.wouters@aiven.io
Area Director Security Dispatch (secdispatch) paul.wouters@aiven.io
Area Director Using TLS in Applications (uta) paul.wouters@aiven.io
Area Director RADIUS EXTensions (radext) paul.wouters@aiven.io
Area Director Messaging Layer Security (mls) paul.wouters@aiven.io
Area Director CBOR Object Signing and Encryption (cose) paul.wouters@aiven.io
Area Director Trusted Execution Environment Provisioning (teep) paul.wouters@aiven.io
Area Director Security Area Directorate (secdir) paul.wouters@aiven.io
Area Director Internet Engineering Steering Group (iesg) paul.wouters@aiven.io
Area Director Privacy Pass (privacypass) paul.wouters@aiven.io
Area Director Lightweight Authenticated Key Exchange (lake) paul.wouters@aiven.io
Chair Security Area Directorate (secdir) paul.wouters@aiven.io
Chair Security Area Open Meeting (saag) paul.wouters@aiven.io
Delegate Authentication and Authorization for Constrained Environments (ace) paul.wouters@aiven.io
Lead IETF Guides (guides) paul.wouters@aiven.io
Liaison Member The Tools Team (tools) paul@nohats.ca
Member IETF-IANA (ietfiana) paul.wouters@aiven.io
Reviewer DNS Directorate (dnsdir) paul@nohats.ca
Reviewer Security Area Directorate (secdir) paul.wouters@aiven.io
Tech Advisor Workload Identity in Multi System Environments (wimse) paul@nohats.ca

RFCs (15)

RFC Date Title Cited by
RFC 7250 Jun 2014 Using Raw Public Keys in Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS) 21 RFCs
RFC 7619 Aug 2015 The NULL Authentication Method in the Internet Key Exchange Protocol Version 2 (IKEv2) 8 RFCs
RFC 7670 Jan 2016 Generic Raw Public-Key Support for IKEv2 1 RFC
RFC 7828 Apr 2016 The edns-tcp-keepalive EDNS0 Option 9 RFCs
RFC 7901 Jun 2016 CHAIN Query Requests in DNS 3 RFCs
RFC 7929 Aug 2016 DNS-Based Authentication of Named Entities (DANE) Bindings for OpenPGP 3 RFCs
RFC 8078 Mar 2017 Managing DS Records from the Parent via CDS/CDNSKEY 3 RFCs
RFC 8221 Oct 2017 Cryptographic Algorithm Implementation Requirements and Usage Guidance for Encapsulating Security Payload (ESP) and Authentication Header (AH) 8 RFCs
RFC 8247 Sep 2017 Algorithm Implementation Requirements and Usage Guidance for the Internet Key Exchange Protocol Version 2 (IKEv2) 6 RFCs
RFC 8598 May 2019 Split DNS Configuration for the Internet Key Exchange Protocol Version 2 (IKEv2) 1 RFC
RFC 8624 Jun 2019 Algorithm Implementation Requirements and Usage Guidance for DNSSEC 3 RFCs
RFC 9102 Aug 2021 TLS DNSSEC Chain Extension
RFC 9395 Apr 2023 Deprecation of the Internet Key Exchange Version 1 (IKEv1) Protocol and Obsoleted Algorithms
RFC 9471 Sep 2023 DNS Glue Requirements in Referral Responses
RFC 9478 Oct 2023 Labeled IPsec Traffic Selector Support for the Internet Key Exchange Protocol Version 2 (IKEv2) 1 RFC

Active Internet-Drafts (7)

Expired Internet-Drafts (28)

(Excluding replaced Internet-Drafts.)

Internet-Draft Activity