Hi Anders,
From: Anders Rundgren <[email protected]>
Date: Sunday, 23 March 2025 at 06:40
To: Michael Richardson <[email protected]>, Orie Steele
<[email protected]>, cose <[email protected]>
Subject: [COSE] Re: [EXT] I-D Action: draft-ietf-cose-cbor-encoded-cert-13.txt
AFAICT, C509 certificate signatures DO NOT use COSE;
Yes, as mentioned previously in the thread, and shouldn’t come as a surprise to
anyone that has read the draft.
the signature is calculated over non-wrapped ("raw") CBOR using
https://www.ietf.org/archive/id/draft-ietf-cose-cbor-encoded-cert-13.html#name-deterministic-encoding
Section 3.6 Deterministic Encoding, which you refer to, is not about signature
calculation. Deterministic encoding here refers to if the mapping f: X.509 ->
C509 is allowed to produce single or multiple (valid) representations. We
should perhaps use a different term to avoid further misunderstandings.
Göran
_______________________________________________
COSE mailing list -- [email protected]
To unsubscribe send an email to [email protected]
