> On 10. Oct 2025, at 04:36, Laurence Lundblade <[email protected]> wrote: > > >> On Oct 9, 2025, at 12:46 PM, Phillip Hallam-Baker <[email protected]> >> wrote: >> >> I wrote nested varints. Gmail overrode me. >> >> The problem is that you can't DER encode an object in a single forward pass >> because you can't write the outermost object until its length is known and >> you don't know that till you have the lengths of the inner objects and so on. > > Right. Same for CBOR deterministic encoding. > > Certificates aren’t constructed in constrained environments. The size of > certificates is microscopic compared to the memory sizes of computers, so > memory is not an issue. The extra code to do multiple passes isn’t much of a > problem either — I was able to do it efficiently in my CBOR encoder.
There are scenarios where certificates are constructed (do you mean „issued“), e.g. in the DICE environment (https://trustedcomputinggroup.org/work-groups/dice-architectures/). For the use / consumption of certificate in constrained devices, the memory size (both RAM and ROM) do matter, for some micro controllers, each byte counts. > > I prefer CBOR to DER/ASN.1 because it is generally simpler. The same here. > > But this is going off the thread’s topic, so I won’t go on any further. > > LL >
_______________________________________________ COSE mailing list -- [email protected] To unsubscribe send an email to [email protected]
