Hannes Tschofenig

Photo of Hannes Tschofenig

Hannes Tschofenig is employed by Arm; prior employers include the European Data Protection Supervisor, Nokia Siemens Networks, and Siemens. His work life focused on developing global standards to make the Internet more secure. He has been active in the IETF for the past 15 years and contributed to more than 80 RFCs on security, privacy and various Internet protocols. Hannes co-chaired several IETF working groups, including OAuth, ACE, KEYPROV, DIME, and ECRIT. From 2010 to 2014 Hannes was a member of the Internet Architecture Board (IAB), a committee of the IETF. Currently, he is a board member and chair of the Device Management and Service Enablement working group of OMA SpecWorks.


rfc4081 Jun 2005 Security Threats for Next Steps in Signaling (NSIS)
rfc4230 Dec 2005 RSVP Security Properties
rfc4279 Dec 2005 Pre-Shared Key Ciphersuites for Transport Layer Security (TLS)
rfc4442 Mar 2006 Bootstrapping Timed Efficient Stream Loss-Tolerant Authentication (TESLA)
rfc4484 Aug 2006 Trait-Based Authorization Requirements for the Session Initiation Protocol (SIP)
rfc4487 May 2006 Mobile IPv6 and Firewalls: Problem Statement
rfc4507 May 2006 Transport Layer Security (TLS) Session Resumption without Server-Side State
rfc4589 Jul 2006 Location Types Registry
rfc4621 Aug 2006 Design of the IKEv2 Mobility and Multihoming (MOBIKE) Protocol
rfc4745 Feb 2007 Common Policy: A Document Format for Expressing Privacy Preferences
rfc4764 Jan 2007 The EAP-PSK Protocol: A Pre-Shared Key Extensible Authentication Protocol (EAP) Method
rfc4806 Feb 2007 Online Certificate Status Protocol (OCSP) Extensions to IKEv2
rfc4891 May 2007 Using IPsec to Secure IPv6-in-IPv4 Tunnels
rfc5069 Jan 2008 Security Threats and Requirements for Emergency Call Marking and Mapping
rfc5077 Jan 2008 Transport Layer Security (TLS) Session Resumption without Server-Side State
rfc5106 Feb 2008 The Extensible Authentication Protocol-Internet Key Exchange Protocol version 2 (EAP-IKEv2) Method
rfc5191 May 2008 Protocol for Carrying Authentication for Network Access (PANA)
rfc5222 Aug 2008 LoST: A Location-to-Service Translation Protocol
rfc5223 Aug 2008 Discovering Location-to-Service Translation (LoST) Servers Using the Dynamic Host Configuration Protocol (DHCP)
rfc5433 Feb 2009 Extensible Authentication Protocol - Generalized Pre-Shared Key (EAP-GPSK) Method
rfc5447 Feb 2009 Diameter Mobile IPv6: Support for Network Access Server to Diameter Server Interaction
rfc5479 Apr 2009 Requirements and Analysis of Media Security Management Protocols
rfc5491 Mar 2009 GEOPRIV Presence Information Data Format Location Object (PIDF-LO) Usage Clarification, Considerations, and Recommendations
rfc5580 Aug 2009 Carrying Location Objects in RADIUS and Diameter
rfc5624 Aug 2009 Quality of Service Parameters for Usage with Diameter
rfc5687 Mar 2010 GEOPRIV Layer 7 Location Configuration Protocol: Problem Statement and Requirements
rfc5713 Jan 2010 Security Threats and Security Requirements for the Access Node Control Protocol (ANCP)
rfc5719 Jan 2010 Updated IANA Considerations for Diameter Command Code Allocations
rfc5723 Jan 2010 Internet Key Exchange Protocol Version 2 (IKEv2) Session Resumption
rfc5763 May 2010 Framework for Establishing a Secure Real-time Transport Protocol (SRTP) Security Context Using Datagram Transport Layer Security (DTLS)
rfc5770 Apr 2010 Basic Host Identity Protocol (HIP) Extensions for Traversal of Network Address Translators
rfc5777 Feb 2010 Traffic Classification and Quality of Service (QoS) Attributes for Diameter
rfc5778 Feb 2010 Diameter Mobile IPv6: Support for Home Agent to Diameter Server Interaction
rfc5866 May 2010 Diameter Quality-of-Service Application
rfc5962 Sep 2010 Dynamic Extensions to the Presence Information Data Format Location Object (PIDF-LO)
rfc5972 Oct 2010 General Internet Signaling Transport (GIST) State Machine
rfc5973 Oct 2010 NAT/Firewall NSIS Signaling Layer Protocol (NSLP)
rfc5980 Mar 2011 NSIS Protocol Operation in Mobile Environments
rfc5981 Feb 2011 Authorization for NSIS Signaling Layer Protocols
rfc5998 Sep 2010 An Extension for EAP-Only Authentication in IKEv2
rfc6023 Oct 2010 A Childless Initiation of the Internet Key Exchange Version 2 (IKEv2) Security Association (SA)
rfc6124 Feb 2011 An EAP Authentication Method Based on the Encrypted Key Exchange (EKE) Protocol
rfc6155 Mar 2011 Use of Device Identity in HTTP-Enabled Location Delivery (HELD)
rfc6280 Jul 2011 An Architecture for Location and Location Privacy in Internet Applications
rfc6444 Jan 2012 Location Hiding: Problem Statement and Requirements
rfc6447 Jan 2012 Filtering Location Notifications in the Session Initiation Protocol (SIP)
rfc6574 Apr 2012 Report from the Smart Object Workshop
rfc6616 May 2012 A Simple Authentication and Security Layer (SASL) and Generic Security Service Application Program Interface (GSS-API) Mechanism for OpenID
rfc6618 May 2012 Mobile IPv6 Security Framework Using Transport Layer Security for Communication between the Mobile Node and Home Agent
rfc6739 Oct 2012 Synchronizing Service Boundaries and <mapping> Elements Based on the Location-to-Service Translation (LoST) Protocol
rfc6753 Oct 2012 A Location Dereference Protocol Using HTTP-Enabled Location Delivery (HELD)
rfc6755 Oct 2012 An IETF URN Sub-Namespace for OAuth
rfc6772 Jan 2013 Geolocation Policy: A Document Format for Expressing Privacy Preferences for Location Information
rfc6950 Oct 2013 Architectural Considerations on Application Features in the DNS
rfc6973 Jul 2013 Privacy Considerations for Internet Protocols
rfc7090 Apr 2014 Public Safety Answering Point (PSAP) Callback
rfc7199 Apr 2014 Location Configuration Extensions for Policy Management
rfc7250 Jun 2014 Using Raw Public Keys in Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS)
rfc7258 May 2014 Pervasive Monitoring Is an Attack
rfc7295 Jul 2014 Report from the IAB/IRTF Workshop on Congestion Control for Interactive Real-Time Communication
rfc7340 Sep 2014 Secure Telephone Identity Problem Statement and Requirements
rfc7378 Dec 2014 Trustworthy Location
rfc7397 Dec 2014 Report from the Smart Object Security Workshop
rfc7406 Dec 2014 Extensions to the Emergency Services Architecture for Dealing With Unauthenticated and Unauthorized Devices
rfc7423 Nov 2014 Diameter Applications Design Guidelines
rfc7452 Mar 2015 Architectural Considerations in Smart Object Networking
rfc7628 Aug 2015 A Set of Simple Authentication and Security Layer (SASL) Mechanisms for OAuth
rfc7670 Jan 2016 Generic Raw Public-Key Support for IKEv2
rfc7687 Dec 2015 Report from the Strengthening the Internet (STRINT) Workshop
rfc7800 Apr 2016 Proof-of-Possession Key Semantics for JSON Web Tokens (JWTs)
rfc7831 May 2016 Application Bridging for Federated Access Beyond Web (ABFAB) Architecture
rfc7840 May 2016 A Routing Request Extension for the HTTP-Enabled Location Delivery (HELD) Protocol
rfc7852 Jul 2016 Additional Data Related to an Emergency Call
rfc7924 Jul 2016 Transport Layer Security (TLS) Cached Information Extension
rfc7925 Jul 2016 Transport Layer Security (TLS) / Datagram Transport Layer Security (DTLS) Profiles for the Internet of Things
rfc7966 Sep 2016 Security at the Attribute-Value Pair (AVP) Level for Non-neighboring Diameter Nodes: Scenarios and Requirements
rfc8147 May 2017 Next-Generation Pan-European eCall
rfc8148 May 2017 Next-Generation Vehicle-Initiated Emergency Calls
rfc8240 Sep 2017 Report from the Internet of Things Software Update (IoTSU) Workshop 2016
rfc8323 Feb 2018 CoAP (Constrained Application Protocol) over TCP, TLS, and WebSockets
rfc8392 May 2018 CBOR Web Token (CWT)
rfc8477 Oct 2018 Report from the Internet of Things (IoT) Semantic Interoperability (IOTSI) Workshop 2016
rfc8628 Aug 2019 OAuth 2.0 Device Authorization Grant

Expired Drafts excluding replaced drafts