[openssl-users] EDDSA certificates

Benjamin Kaduk bkaduk at akamai.com
Thu Jul 27 14:45:34 UTC 2017


On 07/27/2017 09:18 AM, Robert Moskowitz wrote:
> Rich,
>
> Meant to ask you about this at IETF.
>
> Given draft-ietf-curdle-pkix-05.txt sec 10, is there openssl code to
> produce these???
>

There is code to validate them, per commit
4328dd41582bcdca8e4f51f0a3abadfafa2163ee.  I didn't look hard enough to
find how to generate them, but it ought to be there too.

> And, relatedly, what do you think about CBOR encoding rather than
> ASN.1?  Kill ASN.1 in constrained devices and save on transmission costs?

It seems hard to shift a big ecosystem and introduce risk of
incompatibility, but I haven't really thought about it.

-Ben
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20170727/5d3dbe7a/attachment.html>


More information about the openssl-users mailing list