[Cryptography] Is ASN.1 still the thing?
Santosh Chokhani
santosh.chokhani at gmail.com
Fri Nov 17 00:05:39 EST 2017
Wow. That is magic. Do not decode a certificate but verify signature and extract fields.
May be you miswrote this
-----Original Message-----
From: cryptography [mailto:cryptography-bounces+santosh.chokhani=gmail.com at metzdowd.com] On Behalf Of Salz, Rich via cryptography
Sent: Thursday, November 16, 2017 8:32 PM
To: cryptography at metzdowd.com
Subject: Re: [Cryptography] Is ASN.1 still the thing?
If I understand correctly, boringSSL goes futher and tries to never decode the cert and prefers to only extract fields on the fly as it needs them.
As for updating the PKIXI spec, that would be interesting to see if it has momentum. The IETF has, so far, only been interested in nibbling around the edges and doing things like refreshing the crypto (sha2 sha3 instead of sha1 or md5, etc)
_______________________________________________
The cryptography mailing list
cryptography at metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
More information about the cryptography
mailing list