It would be quite reasonable to create a list of checks that a certificate
must go through before it can be compressed. One example of that would be
that the certificate to-be-signed needs to be validated as really being DER
encoded and not have some mistaken BER encoding in it. This of course
includes all of the extensions.
DER encoding should be mentioned early in the document
emanjon
commented
4 years ago
DER encoding should be mentioned early in the document