In the file draft-cose-cbor-revocation-management.md:
The C509CertificateRevocationList is defined as follows
-- Not a mistake, but a typo in the original document, shall be C509CertificateRevocationList
TBSCertificateSigningRequest = (
C509CertificateRevocationListType: int,
issuer: Name,
thisUpdate: Time,
nextUpdate: Time,
revokedCertificates: RevokedCertificates,
crlExtensions: Extensions,
issuerSignatureAlgorithm: AlgorithmIdentifier,
)
As discussed in #149, issuerSignatureAlgorithm field shall be before issuer. And since revokedCertificates may be very large, and crlExtensions may be required before parsing the whole revokedCertificates, I prefer to have crlExtensions before revokedCertificates.
In the file
draft-cose-cbor-revocation-management.md:The
C509CertificateRevocationListis defined as followsAs discussed in #149,
issuerSignatureAlgorithmfield shall be beforeissuer. And sincerevokedCertificatesmay be very large, andcrlExtensionsmay be required before parsing the wholerevokedCertificates, I prefer to havecrlExtensionsbeforerevokedCertificates.Finally, we shall have the following structure