Closed malishav closed 4 months ago
Proposal: Remove the following sentence:
One example of specifying more compact alternatives to X.509 certificates for exchanging trust anchor information is provided by the TrustAnchorInfo structure of [RFC5914], the mandatory parts of which essentially is the SubjectPublicKeyInfo structure [RFC5280], i.e., an algorithm identifier followed by a public key.
Add a note specifying that we are also using static DH keys which cannot be used for signature generation but rather a MAC given the recipients public key.
From John Mattsson's review (https://mailarchive.ietf.org/arch/msg/ace/h85KdNLkMxqzCZjJlY-fGlPEyVw/):