A big thank you, for this and your other suggestions! We have opened corresponding issues at the draft github ( https://github.com/cose-wg/CBOR-certificates/issues) to look into them and track the updates.
Best Regards Joel Högund On Thu, 4 May 2023 at 10:40, Lijun Liao <[email protected]> wrote: > To simplify the process of C509 native CRLs, what about extracting some > extensions from the 'extensions' field and assigning explicit fields for > such extensions? > > 1. CRL extensions 'CRL number' and 'AuthorityKeyIdentifier': > > TBSCertificateSigningRequest = ( > C509CertificateRevocationListType: int, > issuer: Name, > thisUpdate: Time, > nextUpdate: Time, > **crlNumber: ~biguint,** ;new field > **AuthorityKeyIdentifier: ~bstr,**; new field > revokedCertificates: RevokedCertificates, > crlExtensions: Extensions, ; all extensions except CRLNumber and > AuthorityKeyIdentifier > issuerSignatureAlgorithm: AlgorithmIdentifier, > ) > > > 2. CRL entry extension 'crlReason': > > RevokedCertificates = [ > userCertificate: CertificateSerialNumber, > revocationDate: Time, > **crlReason: ~uint,**; new field > crlEntryExtensions: Extensions, ; all extensions except crlReason. > ] > > > BR/ > Lijun Liao > _______________________________________________ > COSE mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/cose >
_______________________________________________ COSE mailing list [email protected] https://www.ietf.org/mailman/listinfo/cose
