CBOR Certificate Algorithm for TLS Certificate Compression

Document Type Replaced Internet-Draft (individual)
Authors John Preuß Mattsson  , Göran Selander  , Shahid Raza  , Joel Höglund  , Martin Furuhed 
Last updated 2020-03-09
Replaced by draft-mattsson-cose-cbor-cert-compress
Stream (None)
Intended RFC status (None)
Expired & archived
plain text xml htmlized pdfized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-mattsson-cose-cbor-cert-compress
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


Certificate chains often take up the majority of the bytes transmitted in TLS handshakes. Large handshakes can cause problems, particularly in constrained IoT environments. RFC 7925 defines a TLS certificate profile for constrained IoT. General purpose compression algorithms can in many cases not compress RFC 7925 profiled certificates at all. By using the fact that the certificates are profiled, the CBOR certificate compression algorithms can in many cases compress RFC 7925 profiled certificates with over 50%. This document specifies the CBOR certificate compression algorithm for use with TLS Certificate Compression in TLS 1.3 and DTLS 1.3.


John Preuß Mattsson (john.mattsson@ericsson.com)
Göran Selander (goran.selander@ericsson.com)
Shahid Raza (shahid.raza@ri.se)
Joel Höglund (joel.hoglund@ri.se)
Martin Furuhed (martin.furuhed@nexusgroup.com)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)