I understand that there are problems with ASN.1 and many people don't
like it, but if we're talking about X.509 certificates we have to use
ASN.1. All of our code for putting blobs into a cert work by defining
the structure using ASN.1. Yes, we can add a blob that has some other
encoding, but it's more difficult.
If the encoding were ASN.1, it might make adoption more straightforward.
-Rick
*+1 though, as former PKIX, I may be biased :-).*
_______________________________________________
Trans mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/trans
