I was talking about cbor-encoded-cert with a few people over the hackathon and over some dinners. A few people asked that we remove the native signature content.
I concur. I don't think it's useful to create a new, isolated C509 ecosystem which retains all of the semantic bugs of PKIX, while being incompatible with PKIX. Many many many people would like to work on a new standardized COSE/CWT based identity system which does not share the PKIX history, and they feel that the world does not have space for PKIX, native-C509, *and* such a new system. -- Michael Richardson <[email protected]>, Sandelman Software Works -= IPv6 IoT consulting =- *I*LIKE*TRAINS*
signature.asc
Description: PGP signature
_______________________________________________ COSE mailing list -- [email protected] To unsubscribe send an email to [email protected]
