<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body text="#000000" bgcolor="#FFFFFF">
On 07/27/2017 09:18 AM, Robert Moskowitz wrote:<br>
<blockquote type="cite"
cite="mid:eb949b6e-b5b6-15eb-444e-68d3ccf13590@htt-consult.com">Rich,
<br>
<br>
Meant to ask you about this at IETF.
<br>
<br>
Given draft-ietf-curdle-pkix-05.txt sec 10, is there openssl code
to produce these???
<br>
<br>
</blockquote>
<br>
There is code to validate them, per commit
4328dd41582bcdca8e4f51f0a3abadfafa2163ee. I didn't look hard enough
to find how to generate them, but it ought to be there too.<br>
<br>
<blockquote type="cite"
cite="mid:eb949b6e-b5b6-15eb-444e-68d3ccf13590@htt-consult.com">And,
relatedly, what do you think about CBOR encoding rather than
ASN.1? Kill ASN.1 in constrained devices and save on transmission
costs?
<br>
</blockquote>
<br>
It seems hard to shift a big ecosystem and introduce risk of
incompatibility, but I haven't really thought about it.<br>
<br>
-Ben<br>
</body>
</html>