Hi All, Have any of you already used in your clients and servers Raw Public Keys, as specified in RFC 7250? It allows to pass raw public keys in a lightweight form of certificate. The main benefit is of course shorter certificates and lower parsing cost. With EC key exchange, the "cert" containing only the public key would be almost as small as the SHA256 of a regular cert! And it seems that it is well suited to the TOFU approach. (the main security considerations - section 6 - do not apply with TOFU) The RFC is already quite old (2014) and it is included in TLS v1.3. Do you know how supported it is in common TLS libraries? Phil
On Tue, 6 Apr 2021 17:41:59 +0000 Phil Leblanc <philanc@gmail.com> wrote: > Do you know how supported it is in common TLS libraries? Wikipedia has a comparison of the capabilities of popular SSL/TLS libraries[0]. Apparently, right now only GnuTLS is known to support Raw Public Keys [0]: https://en.wikipedia.org/wiki/Comparison_of_TLS_implementations#Extensions ~almaember
---
Previous Thread: [spec] The updated speculative specification is now up