The signature is not calculated over the raw CBOR binary? On Sun, Mar 23, 2025, 09:40 Göran Selander <[email protected]> wrote:
> Hi Anders, > > > > *From: *Anders Rundgren <[email protected]> > *Date: *Sunday, 23 March 2025 at 06:40 > *To: *Michael Richardson <[email protected]>, Orie Steele > <[email protected]>, cose <[email protected]> > *Subject: *[COSE] Re: [EXT] I-D Action: > draft-ietf-cose-cbor-encoded-cert-13.txt > > AFAICT, C509 certificate signatures DO NOT use COSE; > > > > Yes, as mentioned previously in the thread, and shouldn’t come as a > surprise to anyone that has read the draft. > > > > the signature is calculated over non-wrapped ("raw") CBOR using > > https://www.ietf.org/archive/id/draft-ietf-cose-cbor-encoded-cert-13.html#name-deterministic-encoding > > > > Section 3.6 Deterministic Encoding, which you refer to, is not about > signature calculation. Deterministic encoding here refers to if the > mapping f: X.509 -> C509 is allowed to produce single or multiple (valid) > representations. We should perhaps use a different term to avoid further > misunderstandings. > > > > Göran > > >
_______________________________________________ COSE mailing list -- [email protected] To unsubscribe send an email to [email protected]
