CBOR Encoded X.509 Certificates (C509 Certificates)
draft-mattsson-cose-cbor-cert-compress-08
| Document | Type |
Replaced Internet-Draft
(individual)
Expired & archived
|
|
|---|---|---|---|
| Authors | Shahid Raza , Joel Höglund , Göran Selander , John Preuß Mattsson , Martin Furuhed | ||
| Last updated | 2021-02-22 | ||
| Replaces | draft-mattsson-tls-cbor-cert-compress, draft-raza-ace-cbor-certificates | ||
| Replaced by | draft-ietf-cose-cbor-encoded-cert | ||
| RFC stream | (None) | ||
| Intended RFC status | (None) | ||
| Formats | |||
| Stream | Stream state | (No stream defined) | |
| Associated None milestones |
|
||
| Consensus boilerplate | Unknown | ||
| RFC Editor Note | (None) | ||
| IESG | IESG state | Replaced by draft-ietf-cose-cbor-encoded-cert | |
| Telechat date | (None) | ||
| Responsible AD | (None) | ||
| Send notices to | (None) |
This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:
Abstract
This document specifies a CBOR encoding of X.509 certificates. The resulting certificates are called C509 Certificates. The CBOR encoding supports a large subset of RFC 5280 and significantly reduces the size of certificates compatible with e.g. RFC 7925, IEEE 802.1AR (DevID), CNSA, and CA/Browser Forum Baseline Requirements. When used to re-encode DER encoded X.509 certificates, the CBOR encoding can in many cases reduce the size of RFC 7925 profiled certificates with over 50%. The CBOR encoded structure can alternatively be signed directly ("natively signed"), which does not require re-encoding for the signature to be verified. The document also specifies COSE headers as well as a TLS certificate type for C509 certificates. NOTE: "C509" is a placeholder, name to be decided by the COSE WG.
Authors
Shahid Raza
Joel Höglund
Göran Selander
John Preuß Mattsson
Martin Furuhed
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)