Göran Selander wrote:
> C509 defines an invertible CBOR re-encoding of DER encoded X.509
> certificates, which supports large commonly used parts of RFC 5280
> including RFC 7925, IEEE 802.1AR, CAB Baseline, RPKI, and eUICC
> profiled X.509 certificates.
Yes, but the document is not JUST about the invertible mechanism.
Re-reading things to answer Brian's previous query I found that the
invertible and native content are now even more confused.
> This doesn’t make C509 into X.509. But since the mapping can be
> reversed to obtain the original DER encoded X.509 certificate it can be
> used as a compact representation of X.509 certificates within the PKIX
> infrastructure.
If that was all the document did, there would be no confusion.
But that's not the whole storey, and we've heard on the list that there are
multiple entities which are using the CBOR-encoded, COSE-signed version.
--
Michael Richardson <[email protected]> . o O ( IPv6 IøT consulting )
Sandelman Software Works Inc, Ottawa and Worldwide
signature.asc
Description: PGP signature
_______________________________________________ COSE mailing list -- [email protected] To unsubscribe send an email to [email protected]
