Missing the method to compute the Subject Key Identifier in Native C509 Certificate

cose-wg / CBOR-certificates

Other

9 stars 7 forks source link

Missing the method to compute the Subject Key Identifier in Native C509 Certificate #179

Open xipki opened 3 months ago

xipki commented 3 months ago

We need to specify the method to compute the key identifier over the public key. The method specified in RFC 5280 (https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.2) cannot be used here, due to the possible different encoded subjectPublicKey.

For the EC public keys (Weierstraß, EdDSA, X25519/X448), the subjectPublicKeyare of the same in X509 and C509. But at least for RSA, it is different.

xipki commented 2 weeks ago

@gselander Could you add the discussion result here?