Hi Eric and list, I have updated the PR https://github.com/tlswg/tls13-spec/pull/1098 last week based on received feedback. Two issues are however still open:
- Should a different codepoint be used for SPKIs other than rsaEncryption (i.e. id-RSASSA-PSS)? If so, what codepoints? - Should certificates with SPKI id-RSASSA-PSS be required to have no parameters (i.e. not restrict the hash algorithm chosen in TLS)? Ideally it would already be sorted out before draft 22 is released. If nothing is changed, then the specification remains ambiguous and interoperability issues may occur. -- Kind regards, Peter Wu https://lekensteyn.nl _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
