I went through my open GitHub issues on cose-x509 <https://github.com/cose-wg/X509/issues> and closed a few, but a few remain. The comments on the issue diverged from their titles, but still seem valuable. They come down to two things.
1) There is agreement that only certs in the DER format is allowed. However, cose-x509-07 doesn’t seem to say that. 2) Confusion over the x5t parameter. I think it is to identify the end-entity cert in an x5bag or out of a collection fetched by URI or a collection the relying party already has, but I’m not sure from the text. (Maybe it is just my misunderstanding or misreading something). LL
_______________________________________________ COSE mailing list [email protected] https://www.ietf.org/mailman/listinfo/cose
